...
Recertification Policy Type | Description |
|---|---|
Account Validity | Account validity recertification policy is used to audit if an account should exist, be disabled, or be deleted. |
Business Role and Location Membership | Members of business Business role and location include person primary membership policy is used to audit if business role and location, person, secondary as well as group and management role membership, exists. |
Direct Reports | This recertification policy is used to audit who reports to whom. |
Exchange Mailbox Permissions | This recertification policy is used to audit who currently has what type of access to a given exchange mailbox. |
Folder Permissions | This recertification policy is used to audit who currently has what type of access to a given windows folder. |
Group Membership | This recertification policy is used to audit who currently has membership in a given group. |
Group Owner | This recertification policy is used to audit the attestation for ownership of groups. |
Group Validity | Group Validity, checks that the account should exists, routes the request to group owner first and then fall-back. |
Management Role Access Assignment | This recertification policy is used to audit the access granted by the management role. |
Management Role Membership | This recertification policy is used to audit the current assignees of a management role. |
Management Role Validity | This recertification policy is used to audit the current validity of a management role. This recertification determines if the management role should exist, be "disabled", or deleted. |
Person Access Summary | This recertification policy is used to audit all the access assigned directly to a person. |
Person Direct Entitlements | This recertification policy is used to audit all the entitlements given directly to a person. |
Person Validity | Person Validity, checks that the account should exists, routes the request to Person owner first and then fall-back. |
...