Versions Compared

Old Version 8

changes.mady.by.user Phillip Hanegan

Saved on

compared with

New Version Current

changes.mady.by.user Phillip Hanegan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


...

importhttps://docs.empowerid.com/docs.css

In EmpowerID, an audit is a user-defined, logically named object for identifying or grouping recertification tasks and running the recertification policies that generate those tasks. After creating an audit, you add recertification policies to it to define what you want to audit. Then when the audit runs, it compiles those recertification policies, creating any necessary recertification tasks.

...

  1. On the Recertification Policy grid, click the Exclusions button for the policy.


    This opens a view with two grids: Exclude These Entitlements and Exclude These Entitlement Types.  These grids allow you to exclude entitlements granted to specific actors, such as individual people or groups, as well as entitlement types, such as roles or groups that have no bearing for the audit.

  2. To exclude a specific entitlement, in the Exclude These Entitlements grid, click the Add button.


    This opens the Attestation Policy Target dialog, where you can select the type of resource, such as Business Role and Location, and a specific object of that type, such as Sales Rep in Boston.

  3. Select a target type from the Type drop-down, for example, Management Role


    A box (or if you choose Business Role and Location, a pair of tree selectors) appears to the right.

  4. Click in the box and press Enter for a list of available options, or type the name of the specific actor to exclude, in this case "customer," select the tile for the actor, and click Save.


    The Customer actor type is added to the grid of entitlements to exclude from this audit.

  5. To exclude a type of entitlement, in the Exclude These Entitlement Types grid, click the Add button.

  6. Select a Type from the drop-down list. The following types are available:
    • Business Role excludes business roles from the type of entitlements audited.
    • Group Membership excludes group membership from the type of entitlements audited.
    • Inherited Direct by Business Role excludes any access inherited directly from the person's business role from the type of entitlements audited.
    • Inherited Direct by Management Role excludes any access inherited directly from the person's management role from the type of entitlements audited.
    • Inherited Direct by Primary Business Role excludes any access inherited directly from the person's primary business role from the type of entitlements audited.
    • Inherited Location based by Business Role excludes any location inherited from the person's business role from the type of entitlements audited.
    • Inherited Location by Primary Business Role excludes any location inherited from the person's primary business role from the type of entitlements audited.
    • Inherited Management Role by Primary Business Role excludes any management role inherited directly from the person's primary business role from the type of entitlements audited.
    • Inherited Role Group Membership excludes any group membership inherited from the person's role from the type of entitlements audited.
    • Management Role excludes management roles from the type of entitlements audited.
    • Primary Business Role excludes primary business roles from the type of entitlements audited.
    • Resource Role excludes resource roles from the type of entitlements audited.
    • Role Group Membership excludes role group membership from the type of entitlements audited.

  7. Click Save.


    The type is added to the grid of excluded entitlement types.

...