Chat now with support
Chat with Support

Identity Manager 9.0 LTS - Compliance Rules Administration Guide

Compliance rules and identity audit
One Identity Manager users for identity audit Basic data for setting up rules Setting up a rule base rule check Mail templates for notifying about identity auditing
Mitigating controls for compliance rules Configuration parameters for Identity Audit

Assigning mitigating controls

Specify which mitigating controls apply to the selected role.

To assign mitigating controls to a rule

  1. In the Manager, select the Identity Audit > Rules > Working copies of rules category.

  2. Select the working copy in the result list.

  3. Select the Assign mitigating controls task.

  4. In the Add assignments pane, double-click the mitigating controls you want to assign.

    – OR –

    In the Remove assignments area, double-click mitigating controls to remove assignments.

  5. Save the changes.

NOTE: Mitigating controls assigned to the SAP functions for testing are automatically transferred into compliance rules about SAP functions.

Prerequisites

  • Active rules are assigned to a functional area and a department.

  • The SAP functions for testing are assigned to the same functional area and then associated variable set of the same department.

For more information about this, see the One Identity Manager Administration Guide for the SAP R/3 Compliance Add-on.

Creating mitigating controls

To create a mitigating control for rules

  1. In the Manager, select the Identity Audit > Rules > Working copies of rules category.

  2. Select a working copy in the result list.

  3. Select the Assign mitigating controls task.

  4. Select the Create mitigating controls task.

  5. Enter the main data of the mitigating control.

  6. Save the changes.

  7. Select the Assign rules task.

  8. In the Add assignments pane, double-click the rules you want to assign.

  9. Save the changes.
Detailed information about this topic

Enabling working copies

When you enable the working copy, the changes are transferred to the original rule. A rule is added to a new working copy. Only original rules are taken into account by rule checking.

To enable a working copy

  1. In the Manager, select the Identity Audit > Rules > Working copies of rules category.

  2. Select the working copy in the result list.

  3. Select the Enable working copy task.

  4. Confirm the security prompt with OK.

TIP: In the Manager, all working copies with a different condition to that of the original rule are displayed in the Identity audit > Rules > Working copies of rules > Modified working copies category.

Recalculating

There are several tasks available for a working copy that immediately perform a rule check. For more information, see Checking compliance rules.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating