Policy object

Attribute mappings: Policy object (ARIS) to Policy definition (ARCM)

ARIS attribute

API name

ARCM attribute

M*

Notes

Name

AT_NAME

name

X

Limited to 250 characters.

Description/
Definition

AT_DESC

description

 

Provides more details about the element, for example, its purpose.

Policy type

AT_POLICY_TYPE

policy_type

X

Two selection options:

  • Confirmation required (the confirmation process is started after the policy is published)
  • Publish only (the process ends after the policy is published)

Confirmation text

AT_CONFIRMATION_TEXT

confirmation_text

 

 

Confirmation duration in days

AT_CONFIRMATION_DURATION

duration

(X)

Outputs the time span in which the users in the policy addressee group can read and confirm the policy. The confirmation duration is relevant only for policies of the type Confirmation required.

Start date of publishing preparation period

AT_START_DATE_APPROVAL_PERIOD_OWNER

startdate

X

Start of the approval period for the policy owner.

End date of publishing preparation period

AT_END_DATE_APPROVAL_PERIOD_OWNER

enddate

X

End of the approval period for the policy owner.

Start date of approval period

AT_START_DATE_APPROVAL_PERIOD_APPROVER

approverstartdate

X

Start of the approval period for the policy approver. The approvals are generated for the approver.

End date of approval period

AT_END_DATE_APPROVAL_PERIOD_APPROVER

approverenddate

X

End of the approval period for the policy approver.

Start date of publishing
period

AT_START_DATE_PUBLISHING_PERIOD

publishingstartdate

 

Start of the publishing period. If no start date is set the publishing period starts directly after approval by the policy owner.

End date of publishing
period

AT_END_DATE_PUBLISHING_PERIOD

publishingenddate

X

End of the publishing period.

Synchronize ARCM

AT_AAM_EXPORT_RELEVANT

-

 

This attribute specifies whether a policy definition should be synchronized with ARIS Risk & Compliance Manager.

Title 1

Title 2

Title 3

Title 4

AT_TITL1

AT_TITL2

AT_TITL3

AT_TITL4

document:

  • name
  • title

 

Indicates the linked documents.

Link 1

Link 2

Link 3

Link 4

AT_EXT_1

AT_EXT_2

AT_EXT_3

AT_LINK

document:

  • link

 

Indicates the linked documents.

ARIS document storage Title 1

ARIS document storage Title 2

ARIS document storage Title 3

ARIS document storage Title 4

AT_ADS_TITL1

AT_ADS_TITL2

AT_ADS_TITL3

AT_ADS_TITL4

document:

  • name
  • title

 

Indicates the linked documents.

ARIS document storage link 1

ARIS document storage link 2

ARIS document storage link 3

ARIS document storage link 4

AT_ADS_LINK_1

AT_ADS_LINK_2

AT_ADS_LINK_3

AT_ADS_LINK_4

document:

  • link

 

Indicates the linked documents.

 

 

owner_group

X

Is identified via the connection to the role. A corresponding link to the policy owner in ARIS Risk & Compliance Manager is saved.

*The M column specifies whether the attribute is a mandatory field.

Additional attributes (Review attribute group) for the Policy object from ARIS 9.5

ARIS attribute

API name

ARCM attribute

M*

Notes

Review-relevant

AT_REVIEW_RELEVANT

reviewRelevant

 

Marks the policy as review-relevant.

Review activities

AT_REVIEW_ACTIVITY

activities

 

Describes the activities to be executed during the review.

Review frequency

AT_REVIEW_FREQUENCY

frequency

(X)

Outputs the interval at which the policy review is to be carried out.

If the policy was marked as review-relevant, this field becomes mandatory.

Event-driven review allowed

AT_EVENT_DRIVEN_REVIEW_ALLOWED

event_driven_
allowed

 

Indicates whether manually created reviews are allowed for policies. Is automatically set to true during import from ARIS to ARIS Risk & Compliance Manager if the Review frequency attribute is set to Event-driven.

Time limit for the execution of the review in days

AT_REVIEW_EXECUTION_TIME_LIMIT

duration

(X)

Indicates the number of days that are available to the policy owner to process the review. The review duration is specified by the end date at which the review must be completed. If the policy was marked as review-relevant, this field becomes mandatory. This attribute is not mandatory if the Review frequency attribute has the value Event-driven.

Start date of policy review

AT_START_DATE_OF_POLICY_REVIEWS

startdate

(X)

Outputs the date from which the first policy review is to be generated. If the policy was marked as review-relevant, this field becomes mandatory. This attribute is not mandatory if the Review frequency attribute has the value Event-driven.

End date of policy review

AT_END_DATE_OF_POLICY_REVIEWS

enddate

 

Outputs the date up to which policy reviews are to be generated.

Length of control period

AT_AAM_TESTDEF_CTRL_PERIOD

control_period

 

Outputs the period to which the policy review relates. If the policy was marked as review-relevant, it is recommended maintaining this field, but it is not mandatory.

*The M column specifies whether the attribute is a mandatory field.