User Certification - Exclude The Account And Keep Just The Entitlements For Review By Manager
(Doc ID 1997717.1)
Last updated on MARCH 12, 2019
Applies to:Identity Manager - Version 18.104.22.168.3 and later
Information in this document applies to any platform.
Scenario: Want user managers to review just some Entitlements that users have. These are AD entitlements, and don't have any specific risk level, so they need to manually select them. Can't use Entitlement Certification, because the Certification Task will be assigned to the Certifier User (and not manager since they don't have this option). Using User Certification since this is the only way in which they can select User Manager as a Reviewer. When defining the Certification Definition, in Content Selection tab one has selected no Roles, just AD User as an Application Instance and the full list of the entitlement that one want to include in scope for this certification campaign. It is mandatory to select one Application Instance if one want to Certify the Entitlements. When the Certification task is created the reviewer (manager) has to certify the entitlements that the user has + the AD Account.
Need a way to remove / hide the Account from the Certification Review task.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!