Policy Violation Work Items
Policy violation work items can be assigned by policy reviewers from the Policy Violation page, or automatically by business processes, violation rules, or alerts configured in your enterprise. These work items are generated outside of the certification process. Policy violation work items can also be created when the Check Active Policies task detects active policy violations.
Approve Policy Violation work items created through a business process can appear and act differently than work items created manually or automatically through an alert or rule. Work items created through a business process are highly customizable, and allow you to take action on the policy violation directly from the work item, instead of having to go to the Policy Violations page. The actions that are enabled, and the resulting actions based on the selection made, depend upon how the business process was defined.
Completing Policy Violation Work Items
In the Work Items Page, you can:
-
Click the Info icon to see information about violation item
-
Forward the violation item to another user to process, using the Forward (arrow) icon
-
Click View to open a detailed view of the item. When you click View, you see more information about the item, and have additional options for managing the item, as described below:
|
Category |
Description |
|
Summary |
|
|
Requester |
The name of the person or workgroup that assigned the work item. |
|
Owner |
The name of the person who is responsible for this work item. |
|
Description |
A brief description of the action required for this work item. |
|
Created |
The creation date of this work item. |
|
Expiration |
The work item expiration date, if one applies. Default work item expiration dates can be set when IdentityIQ is configured. |
|
Priority |
The severity of the work item. |
|
History |
Any historical information attached to this work item. |
|
Send Comment to Requestor |
|
|
Comments |
This section contains any comments that the requester of the work item or the assignee entered. When new comments are added, the requester and the assignee are notified. This notification provides a communication and tracking mechanism for this work item. |
|
Add Comment button |
Allows you to add a comment about the work item. |
|
Address the following policy violation |
|
|
Identity name |
The user name or login ID of the identity that is in violation of the policy. |
|
Policy |
The policy type, Separation of Duty, Activity, Account, or Risk. |
|
Policy Description |
The description of the policy as entered when the policy was created. |
|
Policy Violation Owner |
The name of the person who owns this violation. |
|
Rule |
The name of the rule that caused the policy to be in violation. |
|
Rule Description |
The description of the rule that was broken. |
|
Compensating Control |
Any compensating controls associated the policy. For example, in some cases managers may be exempt for certain separation of duty policies. |
|
Correction Advice |
Any correction advice associated with the policy. This advice is added when the policy is created. |
|
Score Weight |
The risk score assigned to this violation. This score is used for identity risk score generation. Risk scores for policy violations are configured in the Risk Scoring Configuration feature, in Identities > Identity Risk Model |
|
Go to violation |
A link to the policy violation page. |
|
Policy Violation Page |
|
|
Identity |
The username or login ID of the identity that is in violation of the policy. |
|
Policy Name |
Name of the policy. |
|
Rule |
The rule that causes the violation. |
|
Owner |
Name of the person who is responsible for the work item. |
|
Description |
Details of the violation. |
|
Decisions |
May include Allow, Revoke, and Certify. Only available on work items created by a business process. |
The Policy Violation View Work Item page can have the following action buttons:
-
Forward — Displays the Forward Work Item dialog enabling you to forward the work item to another user or workgroup.
You can enter the first few letters of a name in the Forward To field to display a pop-up menu of IdentityIQ users and workgroups with names containing that letter string. Select a name from the list and add your comments. -
Add Comment — Inserts a comment about the work item or policy violation.
When you add comments to work item, the requester of the work item is notified. This notification provides a communication and tracking mechanism for the work item because all comments are stored and displayed until the work item is complete. -
Complete — Displays a dialog where you can add comments prior to closing the work item and marking it as complete.
-
Back To Home — Returns you to the Policy Violations list page. If you do not have access to that page, your IdentityIQ Home page is displayed.
Viewing Policy Violation Information for Work Items
If the work item is associated with a policy violation, you can see more info about the policy violation by taking the following steps:
-
Select View.
-
Select the Go to Violation link in the detail view.
The Policy Violations page displays with a filtered view, showing only the policy violation from the linked item.
-
Select Allow or the three-line menu icon where you can select Details for further information about the rule itself.
-
If you select Allow, a pop-up window asks you to define a date that the violation will be allowed until and add applicable comments. Both are required fields.