Chat now with support
Chat with Support

Identity Manager 8.1 - Attestation Administration Guide

Attestation and recertification
One Identity Manager users for attestation Attestation base data Attestation policies Creating custom mail templates for notifications
Approval processes for attestation cases
Approval policies Approval workflows Selecting attestors Setting up multi-factor authentication for attestation Prevent attestation by employee awaiting attestation Managing attestation cases
Attestation sequence Default attestation and withdrawal of entitlements User attestation and recertification Mitigating controls Appendix: Configuration parameters for attestation

Mitigating controls

Violation of regulatory requirements can harbor different risks for companies. To evaluate these risks, you can apply risk indexes to attestation policies. These risk indexes provide information about the risk involved for the company if this particular policy is violated. Once the risks have been identified and evaluated, mitigating controls can be implemented.

Mitigating controls are independent on One Identity Manager’s functionality. They are not monitored through One Identity Manager.

Mitigating controls describe controls that are implemented if an attestation rule was violated. The attestation can be approved after the next attestation run, once controls have been applied.

To edit mitigating controls

  • In Designer, set the configuration parameter QER | CalculateRiskIndex and compile the database.

For detailed information about risk assessment, see the One Identity Manager Risk Assessment Administration Guide.

General master data for mitigating controls

To edit mitigating controls

  1. In Manager, select Risk index functions | Mitigating controls.

  2. Select a mitigating control in the result list and run Change master data.

    - OR -

    Click in the result list toolbar.

  3. Edit the mitigating control master data.

  4. Save the changes.

Enter the following master data for mitigating controls.

Table 64: General master data for a mitigating control




Unique identifier for the mitigating control.

Significance reduction

When the mitigating control is implemented, this value is used to reduce the risk of denied attestation cases. Enter a number between 0 and 1.


Detailed description of the mitigating control.

Functional area

Functional area in which the mitigating control may be applied.


Department in which the mitigating control may be applied.

Additional tasks for mitigating controls

After you have entered the master data, you can apply different tasks to it. The task view contains different forms with which you can run the following tasks.

Mitigating controls overview

You can see the most important information about a mitigating control on the overview form.

To obtain an overview of a mitigating control

  1. In Manager, select Risk index functions | Mitigating controls.

  2. Select the mitigating control in the result list.

  3. Select Mitigating control overview.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating