Identity Panel supports the automated initiation of access reviews when specific risk conditions are met. This capability is often referred to as a Micro-Review. Micro-Reviews ensure that compliance, security, and operational accuracy are maintained continuously—not just on a fixed schedule.
What Triggers a Micro-Review?
Micro-Reviews are launched automatically when one or more of the following conditions occur:
-
Separation of Duty (SoD) violation: If a user is assigned conflicting entitlements that breach a defined SoD policy, the system can automatically trigger a review of those assignments.
-
Missing required information: If critical data is missing from a user account, group, or entitlement (for example, a missing department or manager field), the system can flag it for review.
-
Custom criteria policies: Administrators can configure rules that evaluate user or resource attributes. When these rules are violated, they initiate a review workflow.
These rules are defined through Identity Panel’s Criteria Policies, which allow for fine-grained scoping and configuration of what gets reviewed, who is notified, and what actions must be taken.
How It Works
When a triggering event occurs:
-
Evaluation: The system evaluates users and entitlements against active Criteria Policies, SoD policies, and required attributes.
-
Trigger: If a policy violation or data deficiency is detected, a review request is generated automatically.
-
Routing: The request is routed to the designated reviewers based on role, responsibility, or organizational hierarchy.
-
Review and Resolution: Reviewers receive a streamlined interface to approve, deny, or request changes. All actions are logged for audit purposes.
This automated process ensures compliance is embedded in daily operations rather than being dependent on periodic manual campaigns.
Comments
0 comments
Article is closed for comments.