You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.
Skip to end of banner
Go to start of banner

Audit with Person Validity Recertification Policy

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 13 Current »

The review of user access rights to see if they are proper and correspond to the organization's internal rules and compliance standards is known as access recertification audit.

An audit can be considered as a project with a start date and end date. We might want to audit or certify multiple items using an audit. For example, in a Q1 audit you might want to certify, an external partner, identify as well as a member of certain high-risk management roles. These items are specified in one or more recertification policies. As a project might have multiple deliverables an audit can have multiple recertification policies associated with it. We can create recertification policies of different types in the EmpowerID system and these policies are reusable.

The person validity recertification is a method of determining whether or not the person is still required. Certain actions must be made if the persons are no longer required. In other words, a person validity recertification policy is to certify whether a person should exist or not.

Note: For the recertification to work in EmpowerID, certain prerequisites must exist.

To create an audit

  1. On the navbar, expand Compliance and select Recertification.

  2. Select the Audits tab on the Recertification page and click + icon to Create Audit.

  3. Enter the name, display name, and description.

  4. Select location from the location tree.

  5. Select the audit owner

  6. Select the started date and due date

  7. Click on the Save button.

  8. Click on the '+' icon to add the recertification policy on the audit details page.

  9. Select the recertification policy from the recertification dropdown.

  10. Select the fall-back assignee and click on Save.

  11. Click on the 'Enable' checkbox for the audit and click on the Save button.

  12. Navigate to the audit tab and search for the above audit.

  13. The audit is displayed in the list.

  14. Compilation status shows as Compilation completed. Business Request = No of the Group in the recertification policy.

    Validate that these Business Requests are visible in MyTasks

  15. Login to MyTasks (Tasks and Requests -->My Task App)

  16. In the top left, filter by 'All Requests'

  17. Search by the Audit Name


    Validate that any of the potential approvers of the business requests can action it

  18. Login to MyTasks -> In the top left, filter by 'To Do' -> Search by the Audit Name.

  19. Click on the Business Request details -> In the decision dropdown following options are available.
    a. 'Certify' any of the Business request items
    d. Disable any of the Business request items
    C. Delete any of the Business request items


    Validate that fulfillment runs successfully for the business requests

  20. Click on the link below the name of the business request in the above image.

  21. It will open a pop-up window.

  22. Verify that the Fulfilment status is “Fulfilment Succeeded.”


    Note: You can also check the fulfillment status of a business request under Request Item Tracking.


    Validate that based on the decisions made on the business requests, the person validity should reflect respectively

  23. In EmpowerID, Navigate to Identity Administration -> People-> Search for the Person configured on the recertification policy.

  24. If Person validity is certified-> then the person should still exist.

  25. If Person validity is disabled->, then the person of the user should not exist anymore.

Check Fulfillment Status of a Business Request





  • No labels