You can create Business Policy Rules (BPRs) for compliance checking in CA Identity Governance. These specific rules define constraints on user, role, and resource relationships, such as if you have X resource, you cannot have Y resource.
Once you create the BPRs you need for your business compliance needs, you list the BPRs you want to apply to a particular universe in the audit properties file. You specify the audit properties file to use when creating a universe. Once specified, this file defines the audit check parameters for the universe, regardless of what CA Identity Governance process kicks off the audit check.
When you have Smart Provisioning enabled in CA Identity Manager, the audit properties file defines which BPRs are used for Smart Provisioning compliance analytics.
Note: When you've completed all BPRs, you should run them against the imported CA Identity Manager configuration to be sure that the initial state of all CA Identity Manager users meets the compliance policies.
Copyright © 2015 CA Technologies.
All rights reserved.
|
|