立即与支持人员聊天
与支持团队交流

Identity Manager 9.2.1 - Attestation Administration Guide

Attestation and recertification
One Identity Manager users for attestation Attestation base data Attestation types Attestation procedure Attestation schedules Compliance frameworks Chief approval team Attestation policy owners Standard reasons for attestation Attestation policies Sample attestation Grouping attestation policies Custom mail templates for notifications Suspending attestation Automatic attestation of policy violations
Approval processes for attestation cases
Approval policies for attestations Approval workflow for attestations Selecting attestors Setting up multi-factor authentication for attestation Prevent attestation by identity awaiting attestation Automatic acceptance of attestation approvals Phases of attestation Attestation by peer group analysis Approval recommendations for attestations Managing attestation cases
Attestation sequence Default attestations Mitigating controls Setting up attestation in a separate database Configuration parameters for attestation

Default attestation policies

One Identity Manager provides default attestation policies for default attestation of new users and recertification of all identities stored in the One Identity Manager database. In addition to this, default attestation policies are provided through which various roles, memberships in roles, user accounts, and system entitlements mapped in the Unified Namespace can be attested.

To display default attestation policies

  • In the Manager, select the Attestation > Attestation policies > Predefined category.

You can customize the following properties for default attestation policies:

  • Approval policies (if several approval policies can be assigned)

  • Owner

  • Processing time

  • Risk index

  • Calculation schedule

  • Deactivated

  • Close obsolete tasks automatically

  • Obsolete tasks limit

  • Reason for decision

  • Condition

NOTE: You can edit attestation policies, whose condition is stored as a definition (XML), in the Web Portal. The definition (XML) cannot be edited in the Manager. For more information, see the One Identity Manager Web Designer Web Portal User Guide.

Additional tasks for attestation policies

After you have entered the main data, you can run the following tasks.

The attestation policy overview

You can display the most important information about an attestation policy on the overview form.

To obtain an overview of an attestation policy

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list.

  3. Select Attestation policy overview task.

Assigning approvers to attestation policies

Use this task to assign identities that can be determined as approvers in an attestation case to the selected attestation policy.

To assign approvers to an attestation policy

  1. In the Manager, select the Attestation > Attestation policies category.

  2. Select the attestation policy in the result list.

  3. Select the Assign approver task.

    In the Add assignments pane, assign the approvers.

    TIP: In the Remove assignments pane, you can remove approver assignments.

    To remove an assignment

    • Select the approver and double-click .

  4. Save the changes.
Detailed information about this topic
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级