An attestation is a process that verifies information in HSC-ID. This can cover a whole range of topics, but mainly deals with the following areas:

Group ownership: are you still the owner?

HR liaisons: is this person in this role or not?

Non-employee and inactive accounts: does this person still need their HSC account?

This information is not automatically updated in our system. The result is that many groups and accounts have outdated records, which can cause problems. Attestations are the answer for this situation; all you need to do is approve or deny the request, and HSC-ID is properly updated.

You may receive multiple attestation requests, depending on your responsibilities within your college. If one of these requests requires your approval, you will see a number beside “Pending Attestations” under My Actions in the HSC-ID web portal:

You will also receive an email, which will look similar to this:

There are a few different types of attestations, called “attestation policies”. Each notification email you receive will list the policy at the top.

The following is a brief overview of each policy type, who approves it, and what it does:

 

Group Ownership

(policy name: CCC_Group_Owner_Attestation)

Who it’s for: owners of shared drives and/or distribution lists

What happens when you approve the request: Nothing – you verify that you are the owner.

What happens when you deny the request: You are removed as the owner. The new owner will need to contact OIT to be set up.

 

HR Liaison permissions

(policy name: CCC_HR Liaison business role membership attestation policy)

 

Who it’s for: managers of those with HR liaison permissions (may or may not be actual HR liaisons)

 

What happens when you approve the request: Nothing – you verify that this person should remain an HR liaison.

 

What happens when you deny the request: Removes the “HR liaison” business role and revokes the associated access.

Non-employee account verification

(policy names: CCC_Contractors Scheduled Attestation Policy, CCC_Visiting_Scholar_Attestation_Policy, or  CCC_Affiliate Attestation Policy)

 

Who it’s for: managers/sponsors of non-employees

 

What happens when you approve the request: Access is extended for the account.

What happens when you deny the request: An expiration date is set for the account.

 

Clean up Unused, Active Accounts

(policy name: CCC_Inactive_AD_Account_Attestation)

 

Who it’s for: users who have not logged in with their credentials in a year or more

 

What happens when you approve the request: Account remains active

What happens when you deny the request: Account is disabled

 

 

If you have any questions about these policies, or encounter a policy that is not listed, please contact our OIT Helpdesk.