Identity and Access Management
Book
MidPoint
- Features
  - Current Features
Identity Connectors
Support
Trainings
Evolveum
Community
Library
Case Studies
Talks
Glossary
Frequently Asked Questions
About

Micro-certification

Alternative names	Ad-hoc access review
Status	supported

Description

Micro-certification is an access certification executed on a small scale, usually certifying single user. It is a scaled-down review process aimed at reduction of unnecessary access of a single entity (user). It works by requesting certification of an access, a process where appropriate reviewers have to certify that access provided to a user is still needed. Micro-certifications are usually triggered, initiated by an automated process after a certain trigger event is detected. E.g. micro-certification may be triggered by a user changing position in an organizational structure.

Documentation

No documentation yet.

Access certification
Access certification

Compliance

This feature is related to the following compliance frameworks:

ISO/IEC 27001 5.9: Inventory of information and other associated assets
ISO/IEC 27001 5.11: Return of assets
ISO/IEC 27001 5.15: Access control
ISO/IEC 27001 5.16: Identity management
ISO/IEC 27001 5.18: Access rights
ISO/IEC 27001 5.34: Privacy and protection of PII
ISO/IEC 27001 6.1: Screening
ISO/IEC 27001 6.3: Information security awareness, education and training
ISO/IEC 27001 6.5: Responsibilities after termination or change of employment
ISO/IEC 27001 6.6: Confidentiality or non-disclosure agreements
ISO/IEC 27001 7.2: Physical entry
ISO/IEC 27001 8.2: Privileged access rights

Was this page helpful?

YES NO

Thanks for your feedback

Micro-certification

Description

Documentation

Related Features

Compliance