Which type of certification campaign ensures role components are verified?

The type of certification campaign that ensures role components are verified is the Role Composition Certification. This certification process specifically focuses on assessing the components that make up a role, such as the access items and entitlements associated with that role. By verifying these components, organizations can ensure that roles are accurately defined and that the permissions granted through these roles are appropriate according to compliance requirements and security policies.

Role Composition Certification helps maintain good governance practices by allowing security teams to evaluate if roles remain aligned with business needs and user responsibilities. This is particularly important in environments where roles might change due to organizational shifts or other factors, as it helps prevent role creep or the accumulation of unnecessary permissions.

In contrast, other campaign types serve different purposes. For instance, Access Items Certification is aimed at evaluating individual access items rather than the composite nature of roles, and Identity Certification focuses on verifying user identities in relation to their assigned access and roles. Manager campaigns involve managers reviewing their team members' access but do not specifically concentrate on verifying role components. Thus, Role Composition Certification is distinct in its emphasis on the integrity and appropriateness of role elements.