Data Owner: Recertification of existing access rights

<< Display table of contents >>

Navigation:  Start > Using 8MAN - The Services > Role & Process Optimization >

Data Owner: Recertification of existing access rights

Background / Value

Safety regulations demand for the implementation of the principle of least privilege. This is why data owners must check periodically the access rights situation of their resources.

With the re-certification process you obtain the possibility to check and change the access rights situation to your resources.

You receive an email with the instructions to the re-certification process. Then you decide for each user and resource if the access right should stay or be removed.

 

Your desired changes will be transferred automatically to the administrator.

 

Complementary Services

Change file server access rights

 

The process in single steps

Rezert1_en

 

Click "Recertification".




Rezert2_en

 

Click on "Start new Recertification". Click on one or more directories. The directories selected are shown on the right. Click on "Start new recertification".




Rezert3_en

 

You can either accept or remove the permissions. Activate all Users which should keep their permissions first. Click on "Accept".

 

Subdirectories are only displayed, if they contain deviating permissions.




Rezert4_en

 

Please fill in a comment. Your notes will be saved in the system for documentation.




Rezert5_en

 

Do the same for the permissions you want to remove. Your decision is marked in the colum "action". Click on "Final Execute". The Administrator gets a list of your decisions for implementation.

 

Temporary permissions of user accounts, which are also authorized with a permission that never expires, will become ineffective and not be shown in the marked column above.

 

Warning

If you click on "Final execute" your administrator receives almost every time an email with your desired changes. This is why we recommend to do the recertification in one go.