Rule Recertification Field

This topic is intended for SecureChange workflow owners, who are responsible for creating and maintaining workflows.

Overview

The Rule recertification field in a Rule Recertification workflow defines global certification settings for the rule such as the certification duration and certification owner. These settings are inherited by every ticket that uses the workflow, ensuring consistent and reliable certifications.

The process allows a handler to certify rules and extend their expiration dates.

The certification owner can then certify or decertify selected rules for supported devices from within the ticket in SecureChange. For example, extend the certification duration, or alternatively, if a rule is no longer required and is decertified, initiate a decommission workflow for it. For more information, see the rule decommission field.

Rule Recertification Field Settings

The table below describes the settings you can configure for the Rule Recertification field.

Rule Certification Field Settings	Description
Field type	Mandatory. The field type for the step which is always Rule recertification.
Field display name	Mandatory. The title displayed for the current and other steps the field is added to in the workflow.
Tooltip	The tooltip text. Similar to the Field display name, when defined, the tooltip text is displayed for every step the field is added to.
General: Read-only	When selected, displays the certification settings for the rule in the ticket in read-only mode. The Rule Certification owner cannot change the certification settings of the rule in the ticket.
Show: Update Metadata	When selected, displays the Update Metadata button in the ticket's Rules for Certification table in the Rule Viewer. After certifying or decertifying rules, the Rule Certification owner can then click Update Metadata to push the data to SecureChange. If the step mode is set to Auto, then rule metadata is pushed automatically when the step runs without user action.
Certification decision settings	The certification validation period for the rule that applies to all rules based on the selected Rule Recertification workflow. Default certificate duration (days): Mandatory. The default validity period for the rule's certification (180 days by default). The duration defined applies to all tickets that use this workflow, unless changed by the ticket handler, if allowed by step permissions. Maximum certificate duration (days): Mandatory. The maximum validity period for the rule's certification (730 days). The maximum validity duration also applies to all tickets that use this workflow. Ticket handlers cannot set a duration longer than this limit. Use step participant email as certification owner email: When selected, populates the rule with the email of the step participant also as the rule certification owner. This option is useful to set a generic email such as the department or group email instead of an individual email.
Current step settings: Read-only expiration duration	When selected, locks the certification expiry duration for the current step. The step's assignee cannot modify the expiration duration for this step.

Dynamic Assignment mode

When assigning steps, it is recommended not to use the Dynamic Assignment mode for a Rule Recertification workflow in cases where two tasks are assigned to different handlers within the same step.

In a Rule Recertification workflow, when multiple tasks are opened on the same step by Dynamic Assignment, no changes can be made to the rules or objects within the rules, and all tools (such as Designer and provisioning) are disabled for the handlers, even if the same handler is configured for all the tasks in the step.

Once you have completed all the required fields and the workflow is saved and active, the next stage of this process is handled in SecureTrack where a rule recertification ticket request is created.

How Do I Get Here?

SecureChange > Workflows