How to resolve Sprinto check for user identification
About
Check: User should be identified
Upon integrating your critical system, Sprinto retrieves user account details from the critical system. These user accounts need to be identified and mapped to the staff members' database under Sprinto's People section. User identification assists Sprinto in validating access management controls, and ensuring compliance with the organization’s security posture.
Purpose
This check is essential to align user account details fetched from integrated critical systems with staff details from the People section. User identification serves the following purposes:
Validates critical system access for mapped staff members.
Notifies staff members to adjust security configurations for critical system user accounts that do not meet compliance requirements.
Ensures the revocation of critical system access if a staff member with access offboards from the organization.
How to resolve
To address the above Sprinto check, you need to identify the user detail in one of the following categories:
Refer to how to identify user for a critical system for more detailed instructions.
Not Employee/Contractor
* If the staff member is not part of the organization as an employee or contractor. * If the user account details do not belong to a single staff member (e.g., "[email protected]," "[email protected]," etc.).
New Employee/Contractor
* If the user account details belong to a staff member who has recently joined the organization as an employee or contractor.
Note: Selecting the "New Employee/Contractor" option allows you to add new staff member details in the People section. The critical system user account then gets linked to the newly added staff member.
Existing Employee/Contractor
If the user account details belong to a staff member who has joined the organization in the past, and you are currently just adding the staff details on Sprinto.