Mitigated Role for Organization Rules

Prerequisites

You must first define a mitigating control before you can assign it to an organization role to mitigate an access risk.

Assigning Role Organization Mitigation

1. Choose Access Management  Mitigated Access  Role Organization Mitigation.

   The Role Organization Mitigation screen shows a list of existing organization roles to which mitigating controls have been assigned.

2. Choose Assign.

   The Role Org Mitigation window opens.

3. Enter information in the required fields, which are marked with an asterisk (*).

   • Org. Rule ID – Select the field to enter the organization rule ID.

   • Access Risk ID – Select the field to enter the access risk ID.

   • Control ID – Select the field to enter the control ID you want to add.

   • Monitor – This field is automatically populated with system data after you choose the control ID.

   • Valid From – This is the start of the period for the mitigating control.

   • Valid To – This is the end of the period for the mitigating control.

   • Status – Choose Active or Inactive from the dropdown menu.

4. Choose Add to associate a system with the mitigating control.

5. Choose Add to associate an organization role with the mitigating control.

6. Choose Submit  Close.

   The mitigating control you assigned is included in the list on the Role Organization Mitigation screen.

Deleting Mitigating Controls from Roles

1. Choose Access Management  Mitigated Access  Role Organization Mitigation.

   The Role Organization Mitigation screen shows a list of existing organization roles to which mitigating controls have been assigned.

2. Select the organization role you want to delete and choose Delete.

   Confirm your decision to delete this mitigating control.

3. Choose Yes.

   The mitigating control you deleted is removed from the Role Organization Mitigation screen.