Identity Cloud

Certify access by event

Administrators have the ability to configure certifications triggered by specific governance events. This process, known as event-based certification, provides faster certification resolution compared to scheduled campaigns spanning several weeks or months that involve multiple applications, complex rules, and hundreds of reviewers.

Event-based certifications run an identity certification for any user that triggers the following events:

  • User create. Identity Cloud detects when a user has been created.

  • User modify. Identity Cloud detects when an existing user has been modified.

  • Attribute change. Identity Cloud detects changes in an existing user’s account attributes.

  • User delete/deactivate. Identity Cloud detects if a user’s account has been deleted or deactivated.

Events tab

To access the Events tab, from the Identity Cloud admin UI, go to Governance > Events.

If you have no events configured in the system, the "There are no events to show" page appears with a New Event button.

governance events

  • 1 New Event. Click to add an event.

  • 2 Search. Search by name, case insensitive.

  • 3 Name: Name of the event.

  • 4 Event type: User created or User updated.

  • 5 Action: Certification or Workflow.

  • 6 Status: Active or Inactive.

  • 7 Ellipsis (). Click to edit, activate (deactivate if active), or delete the event.

The Name, Event type, Action, and Status columns are sortable in descending or ascending order.

Create a new event

  1. On the Identity Cloud admin UI, click Governance > Events.

  2. Click New Event. You will have the option to create the following:

Edit an event

  1. On the Identity Cloud admin UI, click Governance > Events.

  2. Select an event, and then click the ellipsis icon ().

  3. Click Edit, and make any changes to your event settings.

  4. Click Save when done.

Activate or deactivate an event

  1. On the Identity Cloud admin UI, click Governance > Events.

  2. Select an event, and then click the ellipsis icon ().

  3. Click Activate to set the event active in the system. The green Active label appears in the Status column.

  4. To deactivate an active event:

    1. Select an event, and then click the ellipsis icon ().

    2. Click Deactivate.

    3. On the Deactivate Event? modal, click Deactivate. The Inactive label appears in the Status column.

Delete an event

  1. On the Identity Cloud admin UI, click Governance > Events.

  2. Select an event, and then click the ellipsis icon ().

  3. Click Delete to remove the event from the system.

  4. Click Delete again on the confirmation modal.

Copyright © 2010-2024 ForgeRock, all rights reserved.