...
Recertification Policy Type | Description | ||
|---|---|---|---|
Account Validity | Account validity recertification policy is to certify whether an account should exist or not. Possible decisions are: certify, disable and delete. | ||
Business Role and Location Membership | Business role and location membership policy are to certify the membership of a business role and location. Possible decisions are: certify or revoke the member. | ||
Direct Reports | The direct reports recertification policy is to certify who reports to whom. To certify a manager’s direct reports. | ||
Exchange Mailbox Permissions | The exchange mailbox permissions recertification policy is to certify the mailbox permission. Possible decisions are: certify or revoke permission. | ||
Folder Permissions | The folder permission recertification policy is to certify the folder permission of a windows folder. Possible decisions are: certify or revoke permission. | ||
Group Membership | The group membership recertification policy is used to certify group membership, including user and nested groups. Possible decisions are: certify, revoke or convert to just-in-time membership(pre-approved). | Group Owner | The group owner recertification policy, is to certify the group owners. |
Group Validity | The group validity recertification policy is to certify whether a group should exist or not in the group. Possible decisions are: certify, disable and delete. | ||
Management Role Access Assignment | The management role access assignment recertification policy is to certify the access granted to the management role, including any RBAC assignment. | ||
Management Role MembershipMem b ership | The management role membership recertification policy is to certify the current members of a management role, including people, group, and business role and location. | ||
Management Role Validity | The management role validity recertification policy is to certify the current validity of a management role. This recertification determines if the management role should exist, be "disabled,” or deleted. | ||
Person Access Summary | The person access summary recertification policy is used to certify all the access assigned directly to a person. | ||
Person Direct Entitlements | The person direct entitlements recertification policy is used to certify all the entitlements given directly to a person. | ||
Person Validity, ValidityThe person validity recertification policy, | The person validity recertification policy is used to certify the person should exist or not. Possible decisions are: certify, disable and delete. |
...