Identity Governance automatically calculates policy violations when a certification policy is modified, or identity or data application source is published, or when reviews included in the policy are completed. In addition, you can also schedule when certification policy violation calculations will occur. However, you will need to manually calculate policy violations after events such as partial reviews and expiration of the certification policy validity period.
NOTE:If certification policy violations and related risk factors are configured, Identity Governance risk scores will be impacted. Therefore, calculate certification policy violations before calculating risk scores. For information about risk scoring, see Section 15.0, Calculating and Customizing Risk.
To schedule certification policy calculation:
Log in as a Global, Review, or Data Administrator.
Under Policy, select Certification.
Select Schedule tab, and set the schedule.
Select Active and then select Save to activate the schedule.
To manually calculate policy violations:
Log in as a Global, Review, or Data Administrator.
Under Policy, select Certification.
In the Policies tab, select the policy for which you want to calculate policy violations.
Select Actions > Calculate Policy Violations.
NOTE:When a certification policy includes multiple review definitions, and when an entity is included in more than one review definition, then the certification status is defined based on the last review. You can cancel calculations in progress by selecting Cancel next to the progress status.