Identity Governance
Audit and recertification policies are actionable snapshots of data that reveal the access to resources granted to people and roles, the assignments of people to roles, and the security assignments that have been made against protected resources like Exchange mailboxes, applications, and groups. EmpowerID Separation of Duties (SoD) Policies are policies that allow you to implement rules that raise alerts when combinations of resource assignments violate your organization's security protocols. When a Recertification or SoD policy runs, EmpowerID creates review tasks and routes those tasks to the appropriate people, where those tasks can be appropriately dealt with. The topics in this section show you how to set up these policies.