Setting Attestors

You can define which users will serve as attestors for each profile.

Attestors are generally security administrators or compliance personnel who can attest if access was deprovisioned correctly in the event of automated deprovisioning failure, or whether a Requestor used permissions when a utilization extract is blank.

Under the Who can attest? section, select the checkboxes next to Owner, Approver, or Reviewer to enable those roles to attest. You can enable multiple roles to attest, and all users in the assigned roles will become attestors.

Note

You must select at least one role to become an attestor.

You can now select the entitlements for the profile.