Hello everyone! Is there any way to do the access review of Service accounts and how do we add large number of service accounts in access review where all service accounts are having different reviewers.
Hi,
Can you confirm below points?
- Do we have a separate source for service accounts? Flat file or NERM?
- All these service accounts are in the form of identities or correlated many service accounts to single identity?
Creating the certification via search gives more flexibility.
-Abhinov
Hi @Abhinov7
Answers to your questions:
1.We have service registry source where we are fetching all services with webservice connector and service accounts are corelating to these identities.
2.Each service identity having multiple accounts attached.
Hi,
I believe you can leverage search for this.
Prepare a search query to list the identities and create certification from search. You can assign it to any individual or governance group.
-Abhinov
What do you mean by
where all service accounts are having different reviewers
Do you want to be able to choose more than one reviewer based on specific criteria within the same certification campaign?
If the campaign is having svc1,svc2,svc3 accounts all three are having different reviewers.
In a search-based identities certification campaign, you can choose either the manager of each identity in the campaign to review their direct reports’ access, or one identity or governance group to review all identities’ access in the campaign.
I don’t believe there is any other criteria that you can use to assign each identity in the campaign to a specific reviewer.
@christina_gagnon Thanks,I think this option will work.
1 Like
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.