立即与支持人员聊天
与支持团队交流

Identity Manager On Demand - Starling Edition Hosted - Web Portal User Guide

General tips and getting started Managing reports Requests
Setting up and configuring request functions Requesting products Managing the Saved for Later list Pending requests Displaying request history Displaying archived requests Resubmitting requests Canceling requests Renewing products with limit validity periods Unsubscribing products Displaying requests Undoing approvals Managing request inquiries directed at you
Attestation
Managing attestation inquiries directed at you Managing attestations Displaying attestation history My attestation cases Undo attestation case approvals Pending attestations
Compliance Managing risk index functions Responsibilities
Managing task delegations Ownerships My responsibilities
Managing my departments Managing my application roles Managing my devices Managing my business roles Managing my identities Managing my cost centers Managing my multi-request resources Managing my multi requestable/unsubscribable resources Managing my resources Managing my software applications Managing my locations Managing my system entitlements Managing my system roles Managing my assignment resources
Managing data
Managing departments Managing user accounts Managing business roles Managing identities Managing cost centers Managing multi-request resources Managing multi requestable/unsubscribable resources Managing resources Managing locations Managing system entitlements Managing system roles Managing assignment resources
Opening other web applications Managing tickets Appendix: Attestation conditions and approval policies from attestation procedures

Managing my identities' attestation cases

You can use attestation to test the balance between security and compliance within your company. Managers or others responsible for compliance can use One Identity Manager attestation functionality to certify correctness of permissions, requests, or exception approvals either scheduled or on demand. Recertification is the term generally used to describe regular certification of permissions. One Identity Manager uses the same workflows for recertification and attestation.

There are attestation policies defined in One Identity Manager for carrying out attestations. Attestation policies specify which objects are attested when, how often, and by whom.Once an attestation is performed, One Identity Manager creates attestation cases that contain all the necessary information about the attestation objects and the attestor responsible. The attestor checks the attestation objects. They verify the correctness of the data and initiate any changes that need to be made if the data conflicts with internal rules.

Attestation cases record the entire attestation sequence. Each attestation step in an attestation case can be audit-proof reconstructed. Attestations are run regularly using scheduled tasks. You can also trigger single attestations manually.

Attestation is complete when the attestation case has been granted or denied approval. You specify how to deal with granted or denied attestations on a company basis.

Detailed information about this topic

Displaying attestation cases of my identities

You can display attestation cases that involve identities for which you are responsible.

In addition, you can obtain more information about the attestation cases.

To display attestation cases

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Identities.

  3. On the Identities page, click the identity whose attestation cases you want to display.

  4. In the Edit Identity pane, click the Attestation tab.

    This displays all the identity's attestation cases.

  5. (Optional) To display more details of an attestation case, click the relevant attestation case.

Related topics

Approving and denying attestation cases of my identities

You can grant or deny approval to attestation cases of identities for which you are responsible.

To approve an attestation case

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. On the Identities page, click the identity whose attestation cases are pending your approval.

  3. In the Edit Identity pane, click the Attestation tab.

  4. On the Attestation tab, click (Filter).

  5. In the Filter Data pane, under State, select the Pending option.

  6. Click Apply filter.

  7. Perform one of the following actions:

    • To approve an attestation case, select the check box next to the attestation case in the list and click Approve below the list.

    • To deny an attestation case, select the check box next to the attestation case in the list and click Deny below the list.

  8. In the Approve Attestation Case or the Deny Attestation Case pane, perform the following actions:

    1. In the Reason for your decision field, select a standard reason for your approval decision.

    2. In the Additional comments about your decision field, enter extra information about your approval decision.

    TIP: By giving reasons, your approvals are more transparent and support the audit trail.

  9. Click Save.

Related topics

Displaying my identities' rule violations

You can display the rule violations of identities for which you are responsible.

You can also display mitigating controls for each rule violation.

To display identities' rule violations

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click .

  3. On the Identities page, click the identity whose rule violations you want to display.

  4. In the Edit Identity pane, click the Rule Violations tab.

  5. (Optional) To display the mitigating controls of a rule violation, click View mitigating controls next to the rule violation.

Related topics
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级