Setting up Audits

CONNECT allows organization to set up audits by access group on a Annual, Semi-Annual, Quarterly, or Monthly basis. If an access group does not need to be audited then it can be excluded as well. Audits are used to ensure that the identities with access should have access. Unless it was previously transferred the ACRM or ACR that approved/assigned the access will be the one responsible for the audit.

Default Audit Frequency

The default audit frequency is set via the CONNECT -> Configuration -> Audits page. It defines the audit frequency that will be assigned to any new access group brought up from the access control system.

Set this value before Access Groups are initially brought up from the access control system to prevent having to update the access groups later.

Exclude Access Groups from Audits

You can exclude access groups from be auditable by unchecking the Is auditable option for the access group. This can be done either by individual access group or in bulk via the CONNECT > Configuration > Access Group page.

To configure per access group:

  1. Navigate to the Access Groups page under CONNECT > Configuration
  2. Select the access group you would like to update
  3. On the Access Group page, under the Connect section, uncheck Is auditable
  4. Click Save

To configure in bulk:

  1. Navigate to the Access Groups page under CONNECT > Configuration
  2. Using the checkbox on the right side of the access group, check all access groups you would like to update.
  3. Next click the Edit button in the upper right in the Current selection section.
  4. On the Access Groups page, under the Connect section uncheck the Is auditable option
  5. Click Save

Set Audit Frequency

Once all the access groups that should not be audited have been excluded it time to ensure the remaining have the correct audit period. To do this:

  1. Navigate to the Access Groups page under CONNECT > Configuration
  2. Select an access group to update:
  3. on the Access Group page, under the Connect section select the correct Audit Frequency
  4. Click Save

Enable Audit Campaigns

Finally, once all the access groups are configured to the desired audit frequency and access groups that do not need to be audited are excluded in time to enable the audit campaigns via the CONNECT -> Configuration -> Audits page.

To enable audit campaigns:

  1. Navigate to the Audits page under CONNECT > Configuration
  2. Under the Audit Campaigns section, select On for any audit campaign you want to enable.
  3. Click the Save button

Configure Notifications

Finally the last part to configure is the notification. Notification are configured via the CONNECT -> Configuration -> Notifications -> Audit page. Notifications include:

  • Initial
  • Reminder (Day 15)
  • Reminder (End of Audit)
  • Overdue (Day 1)
  • Overdue (Day 2)
  • Overdue (Day 3)
  • Overdue (Day 4)
  • Overdue (Day 5)
  • Overdue (Day 6)
  • Overdue (Day 7)
  • Overdue (Day 8)
  • Overdue (Day 9)
  • Overdue (Day 10)
  • Overdue (Day 11)
  • Overdue (Day 12)
  • Overdue (Day 13)
  • Overdue (Day 14)
  • Overdue (Day 15)

Notifications are only configurable for campaigns that are currently enabled.

To configure notifications:

  1. Navigate to the Audit Notification page under CONNECT > Configuration > Notifications > Audit
  2. Expand the campaign you would like to configure
  3. Select On to enable the notification, or Select Off to disable