Chat now with support
Chat with Support

Identity Manager 8.0 - Compliance Rules Administration Guide

Compliance Rules and Identity Audit
One Identity Manager Users for the Identity Audit Base Data for Setting up Rules Setting up a Rule Base Rule check Creating Custom Mail Templates for Notifications
Mitigating Controls Configuration Parameters for Identity Audit

Additional Tasks for Compliance Frameworks

After you have entered the master data, you can apply different tasks to it. The task view contains different forms with which you can run the following tasks.

In the report Rule violation overview you can get an overview of all rule violations for a compliance framework.

The Compliance Framework Overview

The Compliance Framework Overview

You can see the most important information about a compliance framework on the overview form.

To obtain an overview of a compliance framework

  1. Select the category Identity Audit | Basic configuration data | Compliance frameworks.
  2. Select the compliance framework from the result list.
  3. Select Compliance framework overview in the task view.

Assign Rules

Assign Rules

Use this task to specify which compliance rules are included by the selected compliance framework.

To assign a compliance rule to compliance frameworks

  1. Select the category Identity Audit | Basic configuration data | Compliance frameworks.
  2. Select the compliance framework from the result list.
  3. Select the task Assign rules.
  4. Double-click in Add assignments on the compliance rules to be assigned.

    – OR –

    Double-click in Remove assignments on the compliance rule assignments to be removed.

  5. Save the changes.

Schedules for Checking Rules

Schedules for Checking Rules

Cyclical checking of all rules is controlled through schedules. One Identity Manager provides two default schedules for rule checking. This ensures that the auxiliary table for object assignments are regularly updated and that rule checking is started. You can set up more schedules to do this. Ensure that the schedules are assigned to the rules.

To edit schedules

  1. Select the category Identity Audit | Basic configuration data | Schedules.

    The result list shows exactly those schedules configured for the table ComplianceRule.

  2. Select a schedule in the result list. Select Change master data in the task view.

    – OR –

    Click in the result list toolbar.

  3. Edit the schedule’s master data.
  4. Save the changes.

Enter the following properties for a schedule.

Table 5: Schedule Properties
Property Meaning

Name

Schedule ID. Translate the given text using the button.

Description

Detailed description of the schedule. Translate the given text using the button.

Enabled

Specifies whether the schedule is enabled or not.

NOTE: Only active schedules are executed.

Time zones

Unique identifier for the time zone that is used for executing the schedule. Select either "Universal Time Code" or one of the time zones.

NOTE: When you add a new schedule, the time zone is preset to that of the client from which you started the Manager.

Start (date)

The day on which the schedule should be run for the first time.

Validity period

Period within which the schedule is executed.

  • If the schedule will be run for an unlimited period, select the option Unlimited duration.
  • To set a validity period, select the option Limited duration and enter the day the schedule will be run for the last time in End (date).

Occurs

Interval in which the task is executed. Valid interval types are "Every minute", "Hourly", "Daily", "Weekly", "Monthly" and "Yearly".

Specify the exact weekday for the interval type "Weekly". Specify the day of the month (1st - 31st) for the interval type "Monthly". Specify the day of the year (1 - 366) for the interval type "Yearly".

NOTE: Schedules that have the sub-interval "31" and interval type "monthly" are run on the "31st of the month". The task is, therefore, only run in months with 31 days. The same is true of the interval type "yearly" and the sub-interval "366".

Start time

Fixed start time for the interval types "daily", "weekly", "monthly" and "yearly". Enter the time in local format for the chosen time zone.

The start time for interval types "Every minute" and "Hourly" is calculated from the rate of occurrence and the interval type.

Repeat every

Rate of occurrence for executing the schedule within the selected time interval. Select at least one weekday for the interval type "Weekly".

Last planned run/Next planned run

Execution time calculated by the DBQueue Processor. They are recalculated each time a schedule is run. The time of the next run is calculated from the interval type, rate of occurrence and the start time.

Note: The One Identity Manager provides the start information in the time zone of the client where the program was started. Changes due to daylight saving are taken into account.
Related Documents