Compliance
In the Compliance menu, you can execute various actions and obtain information. The following tables provide you with an overview of the menu items and actions that can be executed here.
Table 39: Items in the "Compliance" menu
|
Compliance |
My actions |
|
Pending Rule Violations |
View all pending rule violations that you are responsible for and can approve. |
|
|
|
|
Rule Violation History |
View granted exception approvals. |
|
|
|
|
Pending Policy Violations |
View all pending policy violations that you are responsible for and can approve. |
|
|
|
|
Policy violations |
View edited policy violations. |
|
|
Auditing |
|
Rule violations |
View all rule violations in the select time period. |
|
|
|
|
Policy violations |
View all policy violations in the select time period. |
|
|
Governance administration |
|
High-risk overview |
View the top 10 statistics with critical objects, grouped by section. View all critical objects from different sections. |
|
|
|
|
Compliance frameworks |
View details about compliance frameworks. |
|
|
|
|
Rule violations |
View all rules and their violations that are assigned to Frameworks under your supervision. |
|
|
|
|
Policy violations |
View all policies and their violations that are assigned to Frameworks under your supervision. |
|
|
|
|
Rule analysis |
View compliance rules containing SAP functions. View SAP user account that are involved with the rule violations. |
|
|
|
|
Function analysis |
View compliance rule violations by user accounts that are assigned to critical SAP functions. |
Detailed information about this topic
My actions
My Actions is a submenu of Compliance. You can execute various actions to do with the compliance items you manage, depending on which entitlements you have been assigned. These actions can be called up over tiles.
Detailed information about this topic
Pending rule violations
Some rule violations can be approved as exceptions. You can see violations under your supervision in Pending Rule Violations. The following information is displayed in the corresponding menu.
Table 40: Possible content of rule violations
|
Employee |
Employee who caused the rule violation. |
|
Rule |
Violated rule. |
|
Approval state |
The status of the approval. Following states are possible.
- Open
- Exception granted
- Exception denied
|
|
Approver |
Employee who has denied or granted exception approval. |
|
Approval date |
Date of the approval decision. |
|
Risk index (calculated) |
Shows the calculated risk index. |
|
Risk index (reduced) |
Shows the risk index reduced by the mitigating control. |
|
Reason |
Shows the manually entered reason added with the exception approval. |
|
Standard reason |
Displays a standard reason if one exist and this option was selected. |
|
Valid until |
The exception is only valid until this date. |
If you are an auditor or an approver, you can obtain more information about exception approvals from Auditing. For more information, see Rule violations.
To open the "Pending Rule Violations" menu
- Open Compliance | My Actions and click Pending Rule Violations.
Detailed information about this topic
Approving exception approvals
As exception approver, you can grant or deny approval to exception approvals in Pending Rule Violations.
To grant or deny exception approvals
-
If rules have been violated, open Pending Rule Violations.
-
Use the filter function in Approval state and set Approval decision pending.
Only the rule or policy violations of the selected type are displayed. For more information, see Filter.
-
Highlight the rule violation you want to approve in the list.
This displays details of the violation in the detailed content view and you can carry out various actions. How you continue depends on the view you find yourself in.
-
Perform one of the following tasks:
Your selected is highlighted.
This displays Approval exceptions.
- Perform one of the following tasks:
NOTE: You can optionally select a predefined text from Standard reasons for all cases still to be approved. Standard reasons are displayed in the approval history and in the case details. For more information about default reasons, see the One Identity Manager Compliance Rules Administration Guide or the One Identity Manager Company Policies Administration Guide.
NOTE: If you are editing several rule or policy violations at the same time, you can enter a reason for each one individually.
-
Click Save.
Your approval decision is saved and the rule or policy violation's status changes accordingly.
and click Next.
and click Next.