# Introduction to the Recertification addon

## What is the Recertification addon?

The **Recertification addon** provides the functionality to <span style="text-decoration: underline;">review access rights</span> to make sure the <span style="text-decoration: underline;">users have access only to what they need</span>.

This Soffid's functionality increases security, mitigates access risk, reduces review times, reduce the cost and also becomes the process auditable and compliant.

Recertification allows you to <span style="text-decoration: underline;">take immediate action to correct inconsistent or unauthorized permissions</span> to prevent unwarranted access. These changes will be applied **in real time with our provisioning** solution in the source systems.

### Concepts

Soffid uses three different concepts:

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">1. </span>**Recertification policies**: the first step is to define and configure the different recertification processes based on the type and scope of the recertification process and the users involved in it.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">2. </span>**Recertification campaign**: once we have the policies, we can create recertification campaigns for each of them, identifying the groups and information systems in which to search for roles or accounts to recertify.

<span style="color: #a6d100; font-weight: bold; font-size: 18px;">3. </span>**Recertification to do**: this is the list of pending recertification campaigns along with the internal tasks that still need to be completed.