IMPORTANT: All information about a company policy and policy violations is irrevocably deleted when the company policy is deleted! The data cannot be retrieved at a later date.
One Identity therefore recommends that you create a report about the company policy and its current violations before deleting it, if you want to retain the information (for audit reasons, for example).
You can delete a company policy, if no policy violations exist for it.
To delete a company policy
-
In the Manager, select the Company Policies > Policies category.
-
Select the company policy to delete in the result list.
-
Select the Disable policy task.
Existing policy violations are removed by the DBQueue Processor.
-
After the DBQueue Processor has recalculated policy violations for the company policy, click in the toolbar to delete the company policy.
The company policy and the working copy are deleted.
Processing tasks are created for the DBQueue Processor to check the validity of a company policy. For every company policy, the DBQueue Processor determines which objects violate the company policy. The specified company policy approvers can check policy violations and if necessary grant exception approval.
Detailed information about this topic
You can start policy checking in different ways to determine current policy violations in the One Identity Manager database:
Furthermore, company policy testing is triggered by different events:
During policy checking, all objects are found that fulfill the condition defined in the company policy. Only enabled company policies are taken into account.
Related topics
You can use the Policy check schedule from One Identity Manager's default installation to test all company policies in full. This schedule generates processing tasks at regular intervals for the DBQueue Processor.
Prerequisites
Detailed information about this topic