Converse agora com nosso suporte
Chat com o suporte

Identity Manager 9.3 - Web Portal User Guide

General tips and getting started Managing background processes Managing reports Managing security keys (WebAuthn) Requests
Setting up and configuring request functions Requesting products Managing the Saved for Later list Pending requests Displaying request history Displaying archived requests Sharing products with others Resubmitting requests Canceling requests Renewing products with limit validity periods Unsubscribing products Displaying approvals Undoing request approvals Managing request inquiries directed at you
Attestation
Managing attestations Managing attestation inquiries directed at you Displaying attestation history Managing your own attestation cases Managing pending attestations Revoking attestation case approvals
Compliance Managing risk index functions Responsibilities
Managing task delegations Ownerships Managing my responsibilities
Managing my departments Managing my application roles Managing my devices Managing my business roles Managing my identities Managing my cost centers Managing my multi-request resources Managing my multi requestable/unsubscribable resources Managing my resources Managing my software applications Managing my locations Managing my system entitlements Managing my system roles Managing my assignment resources Managing my team role
Managing responsibilities of my reports
Managing data
Managing departments Managing application roles Managing user accounts Managing business roles Managing identities Managing cost centers Managing multi-request resources Managing multi requestable/unsubscribable resources Managing resources Managing locations Managing system entitlements Managing system roles Managing assignment resources
Opening other web applications Managing tickets Statistics Appendix: Attestation conditions and approval policies from attestation procedures

Displaying answers to inquiries about pending attestation cases

If the identity you sent an inquiry to has responded to it, you can view their answer in the workflow of the respective attestation case.

To display an answer

  1. In the menu bar, click Attestation > Pending Attestations.

  2. On the Pending Attestations page, click the attestation case that you inquired about.

  3. In the View Attestation Case Details side panel, click the Workflow tab.

    In the workflow, the response is displayed under Answer.

Related topics

Revoking attestation case approvals

If you have made an approval decision about an attestation case, you can undo the approval. To do this, the following prerequisites must be fulfilled:

  • You made the last approval decision about the attestation case.

  • The last approval decision about the attestation case was made at another approval level.

  • There are no parallel approval steps at the current approval level.

To undo an approval

  1. In the menu bar, click Attestation > Attestation history.

  2. On the Attestation History page, click on the attestation process that you have made a decision about.

  3. In the View Attestation Case Details side panel, click Undo approval decision.

  4. In the Undo Approval Decision dialog, perform the following actions:

    1. In the Reason for your decision field, enter why you want to undo the approval.

    2. Click Save.

To undo multiple approvals

  1. In the menu bar, click Attestation > Attestation history.

  2. Next to the attestation cases that you have made a decision about, select the check box.

  3. Click Actions > Undo Approval Decision.

  4. In the Undo Approval Decision dialog, perform the following actions:

    1. In the Reason for your decision field, enter why you want to undo the approval.

    2. Click Save.

To undo your last attestation case approval decision

  1. In the menu bar, click Attestation > Attestation history.

  2. On the Attestation History page, click the relevant attestation case.

  3. In the View Attestation Case Details side panel, click Undo Approval Decision.

Compliance

Companies have different requirements that they need for regulating internal and external identities' access to company resources. On the one hand, rule checks are used for locating rule violations and on the other hand, to prevent them. By using these rules, you can demonstrate compliance with legislated regulations such as the Sarbanes-Oxley Act (SOX). The following demands are made on compliance:

  • Compliance rules define what an identity is entitled to do or not do. For example, an identity may not have both entitlements A and B at the same time.

  • Company policies are very flexible, and can be defined for any company resources you are managing with Manager. For example, a policy might only allow identities from a certain department to own a certain entitlement.

  • Each item that an identity can access, can be given a risk value. A risk index can be calculated for identities, accounts, organization, roles, and for the groups of resources available for request. You can then use the risk indexes to help prioritize your compliance activities.

Some rules are preventative. For example, a request will not be processed if it violates the rules, unless exception approval is explicitly granted and an approver allows it. Compliance rules (if appropriate) and company policies are run on a regular schedule. and violations appear in the identity’s Web Portal to be dealt with there. Company policies can contribute to mitigation control by reducing risk. For example, if risks are posed by identities running processes outside the One Identity Manager solution and causing violations. Reports and dashboards provide you with comprehensive compliance information.

Detailed information about this topic

Managing compliance rules

One Identity Manager can be used to define rules that maintain and monitor regulatory requirements and automatically deal with rule violations. Define compliance rules to test entitlements or combinations of entitlements in the context of identity audit for identities in the company. On the one hand, existing rule violations can be found by checking rules. On the other hand, possible rule violations can be preemptively identified and thus prevented.

For more information about compliance rules, see the One Identity Manager Compliance Rules Administration Guide.

Detailed information about this topic
Documentos relacionados

The document was helpful.

Selecione a classificação

I easily found the information I needed.

Selecione a classificação