Documentation forAccess Rights Manager

Data Owner: Recertification of existing access rights

Safety regulations demand the implementation of the principle of least privilege. This is why data owners must periodically check the access rights situation of their resources.

With the re-certification process, you obtain the possibility to check and change the access rights situation to your resources. When you receive an email with the instructions to the re-certification process, decide for each user and resource if the access right should stay or be removed. Your desired changes will be transferred automatically to the administrator.

  1. Log in to the web client.

  2. In the toolbar, click Recertification > Recertification.

  3. In the Recertification: What Do You Like To Do screen, select a task:

    • Continue a recertification in progress.

    • Select resources for a new certification.

    • Start the recertification process by clicking Continue with ongoing recertification.

  4. In the Configuration screen, accept or remove the appropriate user permissions.

    Subdirectories are only displayed if they contain deviating permissions.

    1. Select the appropriate checkboxes to activate all users who should keep their permissions.

    2. In the right column, click Accept.

    3. In the pop-up dialog box, enter a comment about the action and then click Assign action.

      Your decision is highlighted in the Action column for each user.

      In the right column, ARM displays your current progress.

    4. In the right column, choose an action:

      • Click Save Progress to continue your review later and modify as needed.

      • Click Execute Actions to finalize your decisions.

        Under certain conditions (for example, some types of inherited permissions), ARM cannot automatically remove the permissions. In these scenarios, an administrator receives an email with the desired changes each time you click Execute Actions. SolarWinds recommends performing the recertification during the initial procedure.

  5. Repeat step 4 for the user permissions you want to remove.

See Grant and remove file server access rights for more information.