You can assign extended properties to company resources, hierarchical roles and employees.
To assign objects to an extended property
Select the extended property in the result list.
The object belonging to the object types are displayed on the form.
- OR -
Remove objects in Remove assignments.
Each extended property must be assigned to at least one property group. Furthermore, you can assign the extended properties to any other property groups.
To assign an extended property to a property group
Select the extended property in the result list.
- OR -
Remove property groups in Remove assignments.
To analyze rule checks for different areas of your company in the context of identity audit, you can set up functional areas. Functional areas can be assigned to hierarchical roles and service items. You can enter criteria that provide information about risks from rule violations for functional areas and hierarchical roles. To do this, you specify how man rule violations are permitted in a functional area or a role. You can enter separate assessment criteria for each role, such as a risk index or transparency index.
The risk of rule violation should be analyzed for
To edit functional areas
- OR -
Click in the result list toolbar.
Enter the following data for a functional area.
Property | Description |
---|---|
Functional area | Description of the functional area |
Parent Functional area | Parent functional area in a hierarchy.
Select a parent functional area from the list in order to organize your functional areas hierarchically. |
Max. number of rule violations | List of rule violation valid for this functional area. This value can be evaluated during the rule check. |
Description | Spare text box for additional explanation. |
Installed Module: | Attestation Module |
Employees that can be used to attest attestation procedures can be assigned to compliance rules. Assign an application role for attestors to the compliance rules. Assign employees to this application role that are authorized to attest compliance rules.
A default application role for attestors is available in One Identity Manager. You may create other application roles as required.
User | Task | ||
---|---|---|---|
Attestors for Identity Audit |
Attestors must be assigned to the application role Identity & Access Governance | Identity Audit | Attestors. Users with this application role:
|
To edit attestors
- OR -
Select an application role in the result list. Select Change master data in the task view.
- OR -
Click in the result list toolbar.
Property | Value |
---|---|
Parent application role | Assign the application role Identity & Access Governance | Identity Audit | Attestors or a child application role. |
- OR -
Remove employees from Remove assignments.
© 2023 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy