Chat now with support
Chat with Support

Identity Manager 9.3 - Attestation Administration Guide

Attestation and recertification
One Identity Manager users for attestation Attestation base data Attestation types Attestation procedure Attestation schedules Compliance frameworks Chief approval team Attestation policy owners Standard reasons for attestation Providing terms of use for attestation Attestation policies Sample attestation Grouping attestation policies Custom mail templates for notifications Suspending attestation Automatic attestation of policy violations
Approval processes for attestation cases
Approval policies for attestations Approval workflow for attestations Selecting attestors Setting up multi-factor authentication for attestation Prevent attestation by identity awaiting attestation Automatic acceptance of attestation approvals Phases of attestation Attestation by peer group analysis Approval recommendations for attestations Managing attestation cases
Attestation sequence Default attestations Mitigating controls for attestation policies Setting up attestation in a separate database Configuration parameters for attestation

Showing or hiding conditions

The condition for finding attestation objects can be viewed and edited in the Where Clause Wizard. The SQL query for this condition can be displayed on the main data form.

To show the condition for finding attestation objects on the main data form

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list and run the Change main data task.

  3. Select the Show condition task.

    This displays the Condition field on the main data form. The condition is written like a database query WHERE clause. You can edit it directly.

To hide the condition for finding attestation objects

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list and run the Change main data task.

  3. Select the Hide condition task.

    The Condition field is no longer displayed on the main data form.

Copy attestation policies

You can make copies of attestation policies and use them to modify default attestation policies, for example.

To copy an attestation policy

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list.

  3. Select the Create copy task.

  4. Confirm the security prompt with Yes.

    The attestation policy copy is displayed on the main data form with the name Copy of <Name of original attestation policy>. You can edit this attestation policy.

Showing selected objects

To show a list of attestations found

  1. In the Manager, select the Attestation > Attestation policies category.
  2. Select the attestation policy in the result list and run the Change main data task.

  3. Select Show selected objects task.

    An additional Result tab is shown on the main data form. This displays a list of attestation objects found through the condition.

Deleting attestation policies

IMPORTANT: Do not delete attestation policies, for audit reasons.

Attestation policies may still be removed from the One Identity Manager database under specific conditions. Ensure that the attestation policy is archived when deleted.

For more information about data archiving, see the One Identity Manager Configuration Guide.

Prerequisite

  • The attestation policy is disabled.

To delete an attestation policy

  1. In the Manager, select the Attestation > Attestation policies > Disabled policies category.

  2. Select the attestation policy in the result list and run the Change main data task.

  3. Select Delete attestation policy task.

  4. Confirm the security prompt with Yes.

    The attestation policy is deleted. All associated attestation cases, approval workflows and the attestation history are deleted.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating