Recertification policies are policies that you add to audits to generate recertification review tasks for the access assignments given to people, roles, groups and Query-Based collections. Once you create an Recertification policy, you then scope the policy by adding targets, such as a specific Business Role and Location or group, to it.
Tip |
---|
EmpowerID provides a number of Recertification policies that you can use out of the box. Each of theses policies creates snapshots of data for a particular resource type. You can use these policies as a starting point or create your own. |
Policy | Usage |
---|---|
Access for Active People (Logged in Last 90 Days) | For certifying the EmpowerID access assignments for all people who logged in during the last 90 days. |
All Access Assignments for Shared Folders flagged as Audit | For certifying shared folder access. |
Certify Access Assignments for Resource Mailboxes | For certifying access to resource mailboxes. |
Direct Reports Recertification - All People Logged in Last 90 Days | For managers to recertify any direct reports who have logged in within the last 90 days. |
Mailbox Permissions | For certifying mailbox permissions. |
Management Role Access | For certifying the access granted to Management Roles. |
Person Access Summary for People Logged in Last 90 Days | For certifying the access of all people who have logged in within the last 90 days. |
Person Direct Entitlements | For managers to certify or revoke the access of their direct reports. |
SharePoint Group Access Assignments | All EmpowerID access assignments for SharePoint groups. |
To create a Recertification Policy
...