Identity Policies

Configuration Guide › Advanced Settings › Identity Policies

Identity Policies

An identity policy applies a set of business changes to users who meet certain rules or conditions. You can use identity policies to do the following:

Automate certain identity management tasks, such as assigning roles and group membership, allocating resources, or modifying user profile attributes
Enforce segregation of duties. For example, you can create an identity policy that prohibits members of the Check Signer role from having the Check Approver role.
Enforce compliance. For example, you can audit users who have a certain title and make more than $100,000.

You create and manage identity policy sets in the User Console. For more information on identity policies, see the Administration Guide.

Before you use identity policies, use the Management Console to do the following:

Enable identity policies for an Identity Manager environment
Set the recursion level (optional)

Email CA Technologies about this topic