You use the Attestation Dashboard to view the state of attestation processes that are owned by any group of which you are a member.
To use the Attestation Dashboard, log in to Oracle Identity Self Service, and under Administration, click Attestation Dashboard. The Attestation Dashboard page displays a table listing the state of attestation processes that are owned by any group of which you are a member. The Attestation Dashboard table contains the columns listed in the following table:
| Column | Description |
|---|---|
|
Process Code |
The attestation process code. |
|
Process Name |
The name of the process. The Attestation Process Detail page is displayed when the link for an attestation process name is clicked. |
|
Last Completion |
The date and time when the instance was run before the latest one was completed. If it does not exist, then the value must be None. It is a link that takes the user to the Attestation Request Detail page for the required Attestation Request. |
|
Current Request Date |
The date and time when the last instance of this Process was run. If it has never been run, then the value is New. It is a link that takes the user to the Attestation Request Detail page for the required Attestation Request. |
|
Current Completion |
The date and time when the last instance run was completed. If it has not been completed, then the value is Pending. |
|
Total Records |
The total number of entitlements identified for attestation and covered by an attestation task as part of the last process instance. |
|
Certified |
The number of entitlements certified in the last attestation process instance. |
|
Rejected |
The number of entitlements rejected in the last attestation process instance. |
|
Open |
All the open records for which no responses have been provided by the reviewers. |
You can access the drill-down page from the Attestation Dashboard page. The drill-down page displays the attestation details of all entitlements covered by a particular run of the Attestation Process.
To view attestation request details:
Click the link for the Last Completion or Current Request Page fields listed in the table on the Attestation Dashboard page.
The Attestation Request Detail page displays the request details for the selected attestation process, along with a table that contains the following columns:
| Column | Description |
|---|---|
|
User |
User whose entitlement is being attested. The data is displayed as a link. When you click the link, the user profile page is displayed with the user details for the attestation date. |
|
Resource |
Resource that is the basis for the entitlement being attested. The data is displayed as a link. When you click the link, a page is displayed with the process form data of the entitlement for the attestation date. |
|
Descriptive Data |
Description of the provisioned resource instance. |
|
Comments |
Comment or status of the request. The value can be one of the following:
|
|
Attestation Result |
Last response that was provided for the attestation. |
|
Reviewer |
User who provided the response. The data is displayed as a link. When you click the link, the user profile page is displayed with the current user details. |
|
Delegation Path |
If the attestation of an entitlement goes through any delegation, then you can use the View link in this column to see the Delegation Path Detail page. If no delegation has taken place, then None is displayed. |
|
Comments |
Reviewer comments. Long comments are truncated, and tooltips are used to show the full text of the comments. |
Any attestation requests that require delegation include a link in the Delegation Path column.
Clicking the link displays a Delegation Path page that provides information about the delegation path of the attestation request.
The Data Attested field shows details about the entitlement being attested. It constructs the value by putting together user information, the resource name, and descriptive data in the following format:
User_First_Name User_Last_Name [User_ID] - Resource_Name - Descriptive_Data
The table on the Delegation Path page contains the following fields:
| Column | Description |
|---|---|
|
Reviewer |
The reviewer to whom the entitlement for attestation is assigned. The data is displayed as a link. When you click the link, the current user profile data is displayed. |
|
Attestation Result |
Action supplied by the reviewer. Except for the first record, the value is always Delegated. |
|
Attestation Date |
The date and time of the attestation response of the reviewer. |
|
Comments |
Reviewer comments. Long comments are truncated, and tooltips are used to show the full text of the comments. |
As part of the attestation process, the attestation engine sends e-mail to concerned parties at various stages. You can configure e-mail content by using e-mail templates of the General type in Oracle Identity Manager Email Definition store.
In the templates, the form user is defined as XELSYSADM. You can change it to a different user. You must ensure that the e-mail address is defined for the user selected to use these templates. Otherwise, the system may not be able to send out notifications.
The following e-mail notification templates are available:
Notify Attestation Reviewer: Used for sending e-mail when an attestation task is assigned to a reviewer.
Notify Delegated Reviewers: Used for sending e-mail to reviewers when an attestation task is delegated to them.
Notify Declined Attestation Entitlements: Used for sending e-mail to users in the Process Owner group if a reviewer declines any entitlements.
Attestation Reviewers With No E-Mail Defined: Used for sending e-mail to users in the Process Owner group if an e-mail address is not defined for any of the reviewers.
A system scheduled task called Attestation Grace Period Checker is used to examine the attestation processes defined in Oracle Identity Manager and to create the required attestation tasks.
The features of the Attestation Grace Period Checker scheduled task are:
The scheduled task is set to run every 30 minutes by default. You can change this according to your requirement.
The scheduled task examines all active attestation processes.