Use the flexibility of search to dynamically and accurately create certification campaigns for the users you have loaded into IdentityNow. Start your certification campaign from either the access items, identities, or roles. your query returns.
See the following sections for more details:
Before you get started creating certifications campaigns in search, there are a few important things you need to know.
To ensure that the wizard includes meaningful results for your certification campaign, you should:
If certifying entitlements on Active Directory, be aware of your company's preferred method for revoking access and meet the related prerequisites:
Before you can preview, start, or schedule a campaign, you'll need to enter your campaign information.
1. In the vertical Search toolbar, select the Certification Campaigns icon.
2. Select the New Campaign button to start the certification campaign wizard.
3. Select what you want to certify in your campaign: Identities, Access Items, or Roles.
4. On the next page, select one of the two options to further refine your selection:
5. Create a very precise search query to limit the certification to a specific set of people. The more refined your query, the more refined your results will be. How you refine the access items determines which identities are included in the certification campaign. If you chose to select specific items in step 4, you can refine by the following access items:
6. If you chose to certify all of your results, simply run your query and select Next. If you chose to add them individually, after you run your query, select the specific access you want to include in the campaign, and then select Next.
7. For Identity and Access item-based campaigns, you have the option to further refine the contents of your campaign at this point. If you choose to refine, use the checkboxes to select the specific access items or identities you want to include in the campaign, and then select Next. If you choose to include all, no additional action is needed and you can move on to the next step.
8. Enter a name and description for your campaign. Be specific. Use the toggle to choose whether reviewers will receive notification emails about this campaign's progress.
9. Select who will review and remediate access, and choose what happens to undecided access when the campaign ends.
CAUTION: The undecided access selection determines what your options will be when you complete any open decisions at the end of the campaign. We strongly recommend that you choose to maintain access to undecided items due to the difficulty of reinstating access after it is revoked.
10. Campaign Recommendation - Choose whether or not to include recommendations in your campaign (this option is only available if your company has AI enabled).
11. Select whether you want to generate a preview of the campaign now, schedule generation at another date and time, or save it for later. Select a due date for the campaign.
If you choose to schedule a campaign, select a time zone, an end date, and whether you want the campaign preview to run on a specific date or on a recurring cadence of weekly, monthly, or annually.
NOTE: A campaign cannot be scheduled to start on the current day.
12. Select Continue.
13. Review the campaign details on the Summary page. The creation of a certification campaign is a critical governance process that should be double and triple-checked before it is sent to reviewers.
14. Select the blue button at the top of the page to Save, Schedule, or Generate your campaign (depending on what you chose in step 9).
You will see a green success banner and your campaign is now listed on the Certification Campaigns screen, either under Saved/Scheduled Campaigns or Previewed/Active campaigns.
NOTES:
After configuring your campaign details, you will leave the search interface to double-check the contents and reviewers of your campaign before starting it.
1. In the vertical Search toolbar, select the Certification Campaigns icon.
2. Select one of your campaigns under Saved/Scheduled.
3. On the Campaign Summary page, select Generate Preview.
4. Once your preview is generated, you still need to manually start it. Go to Admin > Certifications > Campaigns and find your campaign in the list. Select the campaign to preview it. The creation of a certification campaign is a critical governance process that should be double and triple-checked before it is sent to reviewers.
5. Select Start at the top of the page. Return to Search. Your campaign is now listed under Previewed/Active.
If you have already configured and saved a campaign but would like to set up a schedule for it, you do so from the Certification Campaigns screen.
1. In the vertical Search toolbar, select the Certification Campaigns icon.
2. Select one of your saved campaigns under Saved/Scheduled Campaigns.
3. On the Preview page, select Schedule Campaign to start the scheduling process.
4. Select your time zone, and schedule your preview using the calendar.
NOTE: To schedule quarterly campaigns, select Annually and check multiple boxes for each month you want to schedule.
5. Select Next. You will see a summary of your scheduled campaign information. Select Schedule. On the main search page, you will see a success message indicating your choice. Your campaign is now listed in the Scheduled Campaigns menu.
An email will be sent to the campaign owner one week before the scheduled campaign generation date to remind them to manually start the campaign.
Once a campaign is created and scheduled you can Edit, Delete Schedule, or Delete it by selecting the three dots in the bottom left of the campaign preview page.
After you've started or scheduled a campaign, follow these tips to monitor, maintain, and manage the campaign:
Did you find the information you needed? If not, please let us know in the Forums. There's also much more on Compass you might find helpful.