Recertification policies are policies that you add to audits to generate recertification review tasks for the access assignments given to people, roles, groups and Query-Based collections. Once you create an Recertification policy, you then scope the policy by adding targets, such as a specific Business Role and Location or group, to it.
| Tip |
|---|
EmpowerID provides a number of Recertification policies that you can use out of the box. Each of theses policies creates snapshots of data for a particular resource type. You can use these policies as a starting point or create your own. |
| Policy | Usage |
|---|---|
| Access for Active People (Logged in Last 90 Days) | For certifying the EmpowerID access assignments for all people who logged in during the last 90 days. |
| All Access Assignments for Shared Folders flagged as Audit | For certifying shared folder access. |
| Certify Access Assignments for Resource Mailboxes | For certifying access to resource mailboxes. |
| Direct Reports Recertification - All People Logged in Last 90 Days | For managers to recertify any direct reports who have logged in within the last 90 days. |
| Mailbox Permissions | For certifying mailbox permissions. |
| Management Role Access | For certifying the access granted to Management Roles. |
| Person Access Summary for People Logged in Last 90 Days | For certifying the access of all people who have logged in within the last 90 days. |
| Person Direct Entitlements | For managers to certify or revoke the access of their direct reports. |
| SharePoint Group Access Assignments | All EmpowerID access assignments for SharePoint groups. |
To create a Recertification Policy
...