Chat now with support
Chat with Support

Identity Manager 8.2.1 - Attestation Administration Guide

Attestation and recertification
One Identity Manager users for attestation Attestation base data Attestation policies Sample attestation Custom mail templates for notifications Suspending attestation
Approval processes for attestation cases
Approval policies for attestations Approval workflow for attestations Selecting attestors Setting up multi-factor authentication for attestation Prevent attestation by employee awaiting attestation Attestation by peer group analysis Managing attestation cases
Attestation sequence Default attestation and withdrawal of entitlements User attestation and recertification Mitigating controls Setting up attestation in a separate database Configuration parameters for attestation

Using base object properties

In the subject line and body text of a mail definition, you can use all properties of the object entered under Base object. You can also use the object properties that are referenced by foreign key relation.

To access properties use dollar notation. For more information, see the One Identity Manager Configuration Guide.


An attestor should receive email notification of new attestations.

Table 14: Email notification properties



Base object



New attestations

Mail body

Dear $FK(UID_PersonHead).Salutation[D]$ $FK(UID_PersonHead).LastName$,

There are new attestations pending for the attestation policy "$FK(UID_AttestationCase).UID_AttestationPolicy[D]$".

Created: $FK(UID_AttestationCase).PolicyProcessed:Date$

You can see this request in the "One Identity Manager Self Service Portal".

Best regards

Use of hyperlinks in the Web Portal

You can add hyperlinks to the Web Portal in the mail text of a mail definition. If the recipient clicks on the hyperlink in the email, the Web Portal opens on that web page and further actions can be carried out. In the default version, this method is implemented in attestations.

Prerequisites for using this method

  • The QER | WebPortal | BaseURL configuration parameter is enabled and contains the URL path to the Web Portal. You edit the configuration parameter in the Designer.

    http://<server name>/<application>


    <server name> = name of server

    <application> = path to the Web Portal installation directory

To add a hyperlink to the Web Portal in the mail text

  1. Click the position in the mail text of the mail definition where you want to insert a hyperlink.

  2. Open the Hyperlink context menu and enter the following information.

    • Display text: Enter a caption for the hyperlink.

    • Link to: Select the File or website option.

    • Address: Enter the address of the page in the Web Portal that you want to open.

      NOTE: One Identity Manager provides a number of default functions that you can use to create hyperlinks in the Web Portal.

  3. To accept the input, click OK.

Default functions for creating hyperlinks

Several default functions are available to help you create hyperlinks. You can use the functions directly when you add a hyperlink in the mail body of a mail definition or in processes

Direct function input

You can reference a function when you add a hyperlink in the Address field of the Hyperlink context menu.




Default functions for requests

The VI_BuildAttestationLinks script contains a collection of default functions for composing hyperlinks to directly grant or deny approval of requests from email notifications.

Table 15: Functions of the VI_BuildAttestationLinks script




Opens the attestation page in the Web Portal.


Approves an attestation and opens the attestation page in the Web Portal.


Denies an attestation and opens the attestation page in the Web Portal.


Opens the page for answering a question in the Web Portal.


Opens the page with pending attestations in the Web Portal.

Customizing email signatures

Configure the email signature for mail templates using the following configuration parameters. Edit the configuration parameters in the Designer.

Table 16: Configuration parameters for email signatures

Configuration parameter


Common | MailNotification | Signature

Data for the signature in email automatically generated from mail templates.

Common | MailNotification | Signature | Caption

Signature under the salutation.

Common | MailNotification | Signature | Company

Company name.

Common | MailNotification | Signature | Link

Link to the company's website.

Common | MailNotification | Signature | LinkDisplay

Display text for the link to the company's website.

VI_GetRichMailSignature combines the components of an email signature according to the configuration parameters for use in mail templates.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating