Object governance
| Status | supported |
|---|
Description
Object governance includes specification of owners, approvers, access control over object modification, object definition certification and other controls applicable to creation, maintenance and evolution of object definitions. The mechanisms are applied to role model and role-based access control mechanisms in particular (role governance). However, the same mechanisms equivalently apply to other midPoint objects, such as organizational units, applications and services. Policy rules can be applied to make sure roles and applications have appropriate owners, approvers and other governance-related relations established. Role certification can be applied a controlled review of role definitions, a process where appropriate reviewers have to certify that access granted by a role is correct.
Documentation
| Version | Introduction | Guides | Configuration | Examples | Plans |
|---|---|---|---|---|---|
| 4.9 | Object Governance |
Object Governance |
|||
| Development | Object Governance |
Object Governance |
|||
| 4.8 | Object Governance |
||||
| All versions | Retirement of Roles |
Related Features
Compliance
This feature is related to the following compliance frameworks:
-
ISO/IEC 27001 5.2: Information security roles and responsibilities
-
ISO/IEC 27001 5.9: Inventory of information and other associated assets
-
ISO/IEC 27001 5.23: Information security for use of cloud services
-
ISO/IEC 27001 5.31: Legal, statutory, regulatory and contractual requirements
-
ISO/IEC 27001 5.36: Compliance with policies, rules and standards for information security