Which type of accounts can be included in campaign certifications?

Campaign certifications in Saviynt are designed to allow organizations to review and validate the access rights of user accounts effectively. Active accounts are the primary focus for these certifications because they represent users currently utilizing the system and are at risk for potential access issues or compliance violations.

The certification process helps ensure that these active accounts have appropriate access permissions aligned with their roles and responsibilities within the organization, maintaining security and compliance standards. This makes it critical to focus on active accounts during campaigns, as any misconfiguration or excessive permissions can lead to security vulnerabilities.

While service accounts, inactive accounts, or all user accounts may have their own significance within identity governance, they are not typically included in campaign certifications aimed primarily at validating current access for ongoing users. This focus on active accounts allows organizations to manage risk more effectively and streamline their compliance processes.