Recertification policies are policies that you add to audits to generate recertification review tasks for the access assignments given to people, roles, groups, and Query-Based collections. The group membership recertification policy is used to certify group membership, including user and nested groups. Possible decisions are: certify, revoke or convert to just-in-time membership(pre-approved). In this post, we will create a group membership type recertification policy and add a target to it.
Create a Group Membership Type Recertification Policy
Log in to the EmpowerID web application as an auditor or other person with the ability to configure audits.
On the navbar, expand Compliance and select Recertification.
On the Recertification page, select the Recertification Policies tab.
Then click + icon to create a new Recertification Policy
The policy details page opens up.
Select policy type as ‘Group Membership.’ Enter any name, display name, and description.
Click on Save.
Add the target type “Location” to the policy createdClick on the '+' icon at the bottom of the policy details page to add the target.
The attestation policy target section opens up.
Under the type dropdown, select ‘Location.’
Under the select a location dropdown, search for a location and select it.
Click on Save.
Add the target type “Group” to the policy createdClick on the '+' icon at the bottom of the policy details page to add the target
The attestation policy target section opens up.
Under the type dropdown, select ‘Group.’
Under the enter, a group name to search dropdown, search for a group, and select it.
Click on Save.