IMPORTANT: Do not delete attestation policies, for audit reasons.
Attestation policies may still be removed from the One Identity Manager database under specific conditions. Ensure that the attestation policy is archived when deleted.
For more information about data archiving, see the One Identity Manager Configuration Guide.
Prerequisite
To delete an attestation policy
-
In the Manager, select the Attestation > Attestation policies > Disabled policies category.
-
Select the attestation policy in the result list and run the Change main data task.
-
Select Delete attestation policy task.
-
Confirm the security prompt with Yes.
The attestation policy is deleted. All associated attestation cases, approval workflows and the attestation history are deleted.
Related topics
Attestations are run when the schedule assigned to an attestation policy is enabled. You can disabled attestation policies to prevent attestation cases being created for individual attestation policies.
IMPORTANT: All associated attestation cases are deleted. To be able to trace the changes later, configure how the data is logged. For more information, see Deleting attestation cases and the One Identity Manager Configuration Guide.
TIP: Numerous default attestation policies are supplied with One Identity Manager. Check which of the default attestation policies are relevant for your data situation when you set up your database. Disable all unnecessary attestation policies.
To disable an attestation policy
-
In the Manager, select the Attestation > Attestation policies category.
-
Select the attestation policy in the result list and run the Change main data task.
-
Set Disabled.
- Save the changes.
Related topics
One Identity Manager makes various reports available containing information about the selected base object and its relations to other One Identity Manager database objects. You can generate the following reports for attestation policies.
Table 12: Reports about attestations
Overview attestation run results |
This report shows the results of an attestation run for the selected attestation policy. |
Overview attestation run results including attestation history |
This report shows the results of an attestation run for the selected attestation policy including the attestation history. |
Detailed status of an attestation run |
This report shows the detailed status of an attestation run including the estimated completion date. |
Detailed status of an attestation run including approval history |
This report shows the detailed status of an attestation run including the estimated completion date and attestation history. |
Sample attestation provides a way to limit the set of attestation objects for an attestation. For example, this can be useful if attesting everyone in an audit would take too long. The sample data can either be generated automatically or compiled manually.
The One Identity Manager provides a standard sample that is used to attest memberships in system entitlements after organizational changes.
Detailed information about this topic