Attestation Tracking

Attestation tracking allows you to monitor who has requested access to particular , the status of that access, and when/if that access will be recertified or removed.

Attestations provide a granular view of a user's lifecycle with an Access Entity. Auditing and automatically recertifying access using Attestations is crucial to monitoring user access in an organization and ensuring that costly license entitlements are appropriately allotted.

Attestations are configured on each record. All active and expired Attestations can always be viewed at Okta Orchestrator -> Attestation -> Attestations in the left nav.

Assigned to: User who requested access
State: Current status of the Attestation
Recertification date: Date on which the Attestation was (or will be) recertified
Forced expiration: When enabled, no recertification of the attestation is possible - access will be automatically revoked on the Recertification date
Parent: This is either the initial request (RITM) that spawned the Attestation, or the previous Attestation that has spawned a renewal

PreviousAccess Rules NextDeactivation Rules

Last updated 10 months ago

Attestation tracking allows you to monitor who has requested access to particular , the status of that access, and when/if that access will be recertified or removed.

Attestations provide a granular view of a user's lifecycle with an Access Entity. Auditing and automatically recertifying access using Attestations is crucial to monitoring user access in an organization and ensuring that costly license entitlements are appropriately allotted.

Attestations are configured on each record. All active and expired Attestations can always be viewed at Okta Orchestrator -> Attestation -> Attestations in the left nav.

Access entity: to which the Attestation is associated
Assigned to: User who requested access
State: Current status of the Attestation
Recertification date: Date on which the Attestation was (or will be) recertified
Forced expiration: When enabled, no recertification of the attestation is possible - access will be automatically revoked on the Recertification date
Parent: This is either the initial request (RITM) that spawned the Attestation, or the previous Attestation that has spawned a renewal

Access entity: to which the Attestation is associated

Access Entity

Access Entities

Access Entity