You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Skip to end of banner
Go to start of banner

Configure the JIT Recertification Flow Item

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

The JIT recertification flow simplifies the process of handling recertification events that occur due to changes in resources or policies without requiring a recertification audit. In some instances, recertification may be necessary, for example, when a person changes departments and their group memberships or management role assignments need to be verified. In such scenarios, previously, the only option was to create an audit, but now, the flow item can trigger the creation of a business request to recertify the resource without the need for a complete audit.

The JIT recertification flow item is tied to a recertification policy that can define which type of data should be certified when the flow item is triggered. Each recertification policy has a Target(s) to configure who/what to recertify, and the Item Type Scope will determine which data/access to recertify.

Recertification Policy : Recertification policies determine the type of access information that needs to be reviewed and validated for each user. Read More

Target: Recertification targets configure who/what to recertify. Targets are added to the policy. Read More

Item Scope Type: Item Type Scope will determine which data/access the policy will recertify. Targets are added to the policy. Read More

When choosing a recertification policy, it's important to ensure that the policy applies to all resources and not just a single individual. For example, if a policy only targets a particular person, it's not effective because the event won't generate a recertification for other individuals in the same event. Therefore, it's essential to have a policy that applies to all resources for effective recertification. Typically, special recertification policies are created for the JIT recertification flow item, which is usually shipped with the product and should not be included in other normal audits. If you want to change the default policy, make sure you meet the requirements discussed here.

You can customize how the JIT recertification process works by adjusting key configurations like Item Type Action, the Recertification Policy, and the Approval Fulfillment Workflow. Follow the steps below to view and change the flow item settings.

Configure the JIT Recertification Flow Item

  1. Please Log in to EmpowerID with the necessary permissions.

  2. On the navbar, expand Low Code /No Code Workflow and No Code Flows.

  3. Click on the Flow Items Activities tab to view a list of flow item activities in the system.

  4. Type "Just in Time Person Access Summary Recertification" in the search box and click search. Then, click on the (blue star) icon to view the details of the recertification flow item.


    You can view other details, including the Item Type Action and Scope Type. Take note that the action type for this particular flow item is Just in Time Person Access Summary Recertification, which we will look into in more detail.


  5. Click on the Item Type Actions tab to view the item type actions.


    Type "Just in Time Person Access Summary Recertification" in the search box and click search. Click on the (blue star) icon to open the details for the item type action.

  6. You can find details, including the Approval Fulfillment WF, which is FWPersonJITRecertification.


    Click on the FWPersonJITRecertification, which opens the ViewOne page for the workflow. View One pages are designed to facilitate the viewing and managing of the corresponding objects in EmpowerID.


  7. Locate the Request Workflow Parameters tab and click on the (blue star) icon.


    Provide the appropriate value for the Target Attestion Policy ID.

  • No labels