Policy Scan
The Policy task type is used to run policies against identity cubes and update identity score cards with any policy violations discovered. IdentityIQ provides the Check Active Policies task as a global policy update task.
The information scanned and updated is determined by the following criteria when the task is created or edited. You can use any combination of options to build a task.
|
Option |
Description |
|
Optional filter string to constrain the identities refreshed |
A filtering string used to limit the number of identity cubes updated by this task. For example you can limit the refresh to one department within your enterprise, such as Finance, by entering: department == "Finance" |
|
Optional list of group or population names to constrain the identities refreshed |
Use this list to further limit the number of identities included in this policy scan. |
|
Apply all active policies |
Scan for active policies and apply those policies to the identities included in the task. |
|
A comma separated list of specific policy names. When set, this overrides the default policies |
Scan for and apply only those policies included in this list to the identities included in the task. |