You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.
Skip to end of banner
Go to start of banner

Account Validity Type Recertification Policy

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 16 Next »

Account validity recertification policy is to certify whether an account should exist or not. For example, in a company there may be employees access recertification or review yearly. For the recertification, an audit is created, which generates business requests that are sent for approval. The engine bundles the recertification items into business requests as per the responsible party. For any item being recertified where its responsible party is null, it bundles them all into one business request where the subject of the request is the fall-back assignee. Recertification policies are policies that you add to audits to generate recertification review tasks for the access assignments given to people, roles, groups, and query-based collections.

Account validity recertification policy is to certify whether an account should exist or not. Possible decisions are generally available as certify, disable and delete. However, these possible decisions are configurable. For configuring them we need to take the following steps.

  1. Log in to the EmpowerID web application

  2. On the navbar, expand IT Shop and select Approval Flow Policies.

  3. On the Approval Flow Policies page, select the Item Type Actions tab.

  4. Then search for Recertify Account Validity.

  5. Click on the Recertify Account Validity and scroll down to select Decisions for Approval Flow Steps.

  6. Click on the + icon to add more approval decision if needed.

In this post, we will create account validity type recertification policy and add a target to it.

Pre-requisite for recertification policies, audit compilation and fulfilment of business requests.

Create a Account Validity Type Recertification Policy

  1. Log in to the EmpowerID web application as an auditor or other person with the ability to configure audits.

  2. On the navbar, expand Compliance and select Recertification.

  3. On the Recertification page, select the Recertification Policies tab.

  4. Then click + icon to create a new Recertification Policy

  5. The policy details page opens up.

  6. Select policy type as ‘Account Validity.’ Enter any name, display name, and description.

  7. Click on Save.



    Add the target type “Location” to the policy created

  8. Click on the '+' icon at the bottom of the policy details page to add the target.

  9. The attestation policy target section opens up.

  10. Under the type dropdown, select ‘Location.’

  11. Under the select a location dropdown, search for a location and select it.

  12. Click on Save.


    Add the target type “Set Group” to the policy created

  13. Click on the '+' icon at the bottom of the policy details page to add the target.

  14. The attestation policy target section opens up.

  15. Under the type dropdown, select ‘Set Group.’

  16. Type a query name under “enter a query-based collection name”.

  17. Click on Save.

  18. The account validity policy type with two target types are created.

Next Steps

  • No labels