Directions: Attestation for manually maintained Manifest groups

This document provides an overview of the attestation process for manually maintained Manifest groups.

Review Automated Emails
Review group members and update access as needed
Review group privileges and update as needed
Review the service(s) that this group is eligible for
Attest

Review Automated Emails

Manifest groups that are part of the attestation process will have automated emails sent to individuals with either “Admin” or “Update” and “Read” access for that manifest group. These emails will come from Help@doit.wisc.edu.

Sample attestation email.

If you are an administrator for more than one manifest group, the email will list multiple manifest groups.
- Complete attestation and the below steps for each manifest group.
Some manifest groups have multiple administrators, the email will list the other manifest group administrators receiving the email so you can coordinate completing attestation.
Click on the link labeled “Complete Attestation here” to start the process
- The link will take you to manifest for the specific manifest group
Manifest will have a yellow banner with the attestation due date and an “Attest” button. Do not click on the “Attest” button until after you have completed the below steps.

Screenshot showing yellow banner with attestation due date.

Review group members and update access as needed

Under the Members tab review all members of the group
- Update membership as needed using Manifest - Manage Group Members Knowledge Base article
- For groups with a lot of members, exporting the list of members may be useful.
  - In the upper right corner click on the “more actions” button, from the drop down list select one of the export members options.
Do not click on the “Attest” button until you have completed the below steps.

Review group privileges and update as needed

Click the Privileges tab. A list of the current users with privileges will show.
Review privileges and update the privileges or individual listed as needed using the Manifest - Manage Group Privileges Knowledge Base article.

Review the service(s) that this group is eligible for

Please make sure the group requires access to the services tools shown.

In the upper right corner click on the “more actions” button, from the drop down list select “View where this group is used”
- This will open the “Management Tools” page in a new tab in your browser. Please leave the original tab for group details open.

Screenshot to review services group is eligible for.

On the “management tools” page you will see the search results for the manifest group you are reviewing. This page will list services that this manifest group has access to through manifest.
- Review services listed under Direct Group Membership and Indirect Group Membership
- If this manifest group is granting access to other tools/services outside of manifest, those will not be listed. For example, if the manifest group is being leveraged by other applications or views to grant access, then that information will not be displayed.

Manifest Management Tools screenshot.

Review the services listed. If updates are needed:
- If a service needs to be removed:
  - If you have administrator privileges for the service group, then you can remove your manually maintained manifest group as needed. Navigate to the service group and under the Members tab, remove the desired manually maintained manifest group.
  - If you do not have the appropriate permission level to make this update then please submit the request to manifest@doit.wisc.edu.
- If you’d like to request additional services please please submit the request to manifest@doit.wisc.edu.

Attest

Navigate back to Membership Tab
- The Group Details information is open in the original browser tab, go back to that browser tab and select the “Membership” tab.
After you have confirmed the membership, administrator privileges, and services are accurate for the manifest group click “Attest”
- In the upper right hand corner a banner will briefly display indicating that attestation was completed
- The attestation due date will be updated
- Overnight an email confirmation will be sent to you and individuals with either “Admin” or “Update” and “Read” access for that manifest group

FAQ

Who will receive the emails to complete attestation
- Individuals with either “Admin” or “Update” and “Read” access
- For more information on these privileges, please review the Manifest - Manage Group Privileges Knowledge Base article
Who do I contact if I have questions
- Reply to the email you received asking you to complete attestation. These emails are sent from help@doit.wisc.edu and your questions will be routed to the appropriate team.
What if I shouldn’t be receiving these emails/ What if I shouldn’t be an administrator for this manifest group?
- If you no longer require the administrator or update and read privileges for this manifest group, please follow instructions on the Manifest - Manage Group Privileges Knowledge Base article to first add/update privileges for a different user as needed, then remove your privileges.
What happens if this attestation process is not completed?
- At this time, there are no consequences for not completing attestation. However, consequences could be added in the future.
What if this manifest group is no longer needed?
- Follow directions on the Manifest - Delete a Group knowledge base article

Keywords	Attestation Manually Maintained Manifest Groups Suggest keywords	Doc ID	128981
Owner	MST Support .	Group	Identity and Access Management
Created	2023-06-13 06:26 CST	Updated	2023-06-13 10:05 CST
Sites	Identity and Access Management
Feedback	0 0 Comment Suggest a new document