You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.
Skip to end of banner
Go to start of banner

Management Role Access Assignment Type Recertification Policy

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 18 Next »

The management role access assignment recertification process validates whether the access granted to a management role is still required for a valid business purpose. Certain actions must be made if access is no longer required. In other words, the management role of access recertification policy is to certify whether access granted should exist or not.

For the recertification, a recertification policy is created, a recertification audit is created, the recertification policy is added to the audit, then the audit is compiled, which generates business requests that are sent for approval.

The engine bundles the recertification items into business requests based on the object itself. Therefore in this case the management role is the bundle for the business request and the access already granted are items.

Pre-requisite for recertification policies, audit compilation and fulfilment of business requests.

Create a Management Role Access Assignment Recertification Policy

  1. Log in to the EmpowerID Web application as an auditor or other person with the ability to configure audits.

  2. On the navbar, expand Compliance and select Recertification.

  3. On the Recertification page, select the Recertification Policies tab

  4. Then click + icon to create a new Recertification Policy

  5. The policy details page opens up.

  6. Select policy type as ‘Management Role Membership.’

  7. Enter any name, display name, and description.

  8. Click on save. The recertification policy is saved successfully.

Add the target type “management role” to the policy created

  1. Click on the '+' icon to add the target.

  2. The attestation policy target section opens up.

  3. Under the type dropdown, select ‘Management Role.’ Enter the name of the Management role

  4. Click on Save.

Add the target type “location” to the policy created

  1. Click on the '+' icon to add the target

  2. The attestation policy target section opens up.

  3. Under the type dropdown, select ‘Location.’

  4. Click on Save

Add the target type “Management Role Definition” to the policy created

  1. Click on the '+' icon to add the target

  2. The attestation policy target section opens up.

  3. Under the type dropdown, select ‘Management Role Definition.’

  4. Click on Save.

Add the target type “Set Group” to the policy created

  1. Click on the '+' icon to add the target

  2. The attestation policy target section opens up.

  3. Under the type dropdown, select ‘Set Group.’

  4. Click on Save.'

Add multiple targets to the policy type “Management Role Access Assignment.”

  1. Click on the '+' icon to add the target

  2. The attestation policy target section opens up.

  3. Under the type dropdown, select ‘Set Group.’

  4. Click on Save.

  5. Click on the '+' icon to add the target

  6. The attestation policy target section opens up.

  7. Under the type dropdown, select ‘Management Role Definition.’

  8. Click on Save.

Next Steps

  • No labels