立即与支持人员聊天
与支持团队交流

Identity Manager 9.1 - Attestation Administration Guide

Attestation and recertification
One Identity Manager users for attestation Attestation base data Attestation types Attestation procedure Attestation schedules Compliance frameworks Chief approval team Attestation policy owners Standard reasons for attestation Attestation policies Sample attestation Grouping attestation policies Custom mail templates for notifications Suspending attestation
Approval processes for attestation cases
Approval policies for attestations Approval workflow for attestations Selecting attestors Setting up multi-factor authentication for attestation Prevent attestation by employee awaiting attestation Phases of attestation Attestation by peer group analysis Managing attestation cases
Attestation sequence Default attestation and withdrawal of entitlements User attestation and recertification Certifying new roles and organizations Mitigating controls Setting up attestation in a separate database Configuration parameters for attestation

Assigning compliance frameworks to attestation policies

Use this task to specify which compliance frameworks are relevant for the selected attestation policy. Compliance frameworks are used for classifying attestation policies, compliance rules, and company policies according to regulatory requirements.

To assign compliance frameworks to an attestation policy

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list.

  3. Select the Assign compliance frameworks task.

    In the Add assignments pane, assign the compliance frameworks.

    TIP: In the Remove assignments pane, you can remove compliance framework assignments.

    To remove an assignment

    • Select the compliance framework and double-click .

  4. Save the changes.

Mitigating controls

Mitigating controls describe controls that are implemented if an attestation rule was violated. The attestation can be approved after the next attestation run, once controls have been applied.

To edit mitigating controls

  • In the Designer, enable the QER | CalculateRiskIndex configuration parameter.

    NOTE: If you disable the configuration parameter at a later date, model components and scripts that are not longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide.

Detailed information about this topic

Assigning mitigating controls

Specify which mitigating controls apply to the selected attestation policy.

To assign mitigating controls to an attestation policy

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list.

  3. Select the Assign mitigating controls task.

    In the Add assignments pane, assign the mitigating controls.

    TIP: In the Remove assignments pane, you can remove mitigating control assignments.

    To remove an assignment

    • Select the mitigating control and double-click .

  4. Save the changes.

Creating mitigating controls

To create a mitigating control for attestation policies

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select an attestation policy in the result list.

  3. Select the Assign mitigating controls task.

  4. Select Create mitigating controls task.

  5. Enter the main data of the mitigating control.

  6. Save the changes.
  7. Select the Assign attestation polices task.

  8. In the Add assignments pane, double-click the attestation policies you want to assign.

  9. Save the changes.
Detailed information about this topic
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级