IBM Verify

 View Only

First steps into Identity Governance with IBM Security Identity Governance and Intelligence (IGI)

By Pier Luigi Rotondo posted Tue October 15, 2019 11:15 AM

  

Certification campaigns are a formal process that automates the periodic review of a relationship and enable critical access decisions by nontechnical line-of-business managers. Certification campaigns aim at ensure business compliance, by promptly removing unnecessary accesses and rights.

 

IBM Identity Governance and Intelligence, or simply IGI, supports five different certification campaign types: User Assignment, Organization Unit Assignment, Risk Violation Mitigation, Entitlement, and Account certification.


User Assignment certification campaigns review individual user entitlements. Organization Unit Assignment certification campaigns assess where entitlements are visible. Risk Violation Mitigation certification campaigns review unmitigated risk violations. Entitlement certification campaigns examine the contents of each entitlement. Finally, Account certification campaigns review account access for target applications under management.

 

Certification campaigns are created and configured by the IGI Administrator in Access Governance Core, and then run by reviewers, using the Service Center. Reviewers are responsible for approving or revoking the items under review in the campaign. For example, in a User Assignments campaign, it is typical for the user managers or department managers to review the entitlements held by users in their organizations.



The campaign supervisor manages the overall campaign progress and makes sure that the campaign reviewers remain on track.


For further details, watch the video tutorial at https://www.securitylearningacademy.com/course/view.php?id=662

You can also experiment certification campaigns in IGI, by using the online lab available at https://www.securitylearningacademy.com/mod/hvp/view.php?id=15135

0 comments
21 views

Permalink