...
Recertification Policy Type | Description |
---|---|
Account Validity | Account validity recertification policy is used to audit if an account should exist, be disabled, or be deleted. |
Business Role and Location Membership | Business role and location membership policy is used to audit if business role and location, person , as well as group membership, exists. |
Direct Reports | This recertification policy is used to audit who reports to whom. |
Exchange Mailbox Permissions | This recertification policy is used to audit who currently has what type of access to a given exchange mailbox. |
Folder Permissions | This recertification policy is used to audit who currently has what type of access to a given windows folder. |
Group Membership | This recertification policy is used to audit who currently has membership in a given group. |
Group Owner | This recertification policy is used to audit the attestation for ownership of groups. |
Group Validity | Group Validity, checks that the account should exists, routes the request to group owner first and then fall-back. |
Management Role Access Assignment | This recertification policy is used to audit the access granted by the management role. |
Management Role Membership | This recertification policy is used to audit the current assignees of a management role. |
Management Role Validity | This recertification policy is used to audit the current validity of a management role. This recertification determines if the management role should exist, be "disabled", or deleted. |
Person Access Summary | This recertification policy is used to audit all the access assigned directly to a person. |
Person Direct Entitlements | This recertification policy is used to audit all the entitlements given directly to a person. |
Person Validity | Person Validity, checks that the account should exists, routes the request to Person owner first and then fall-back. |
...