Which statement about segment usage in certification scoping is true?

In the context of certification scoping within SailPoint Identity Security Cloud, the statement that segments cannot be used in certification scoping is accurate. Segments serve as a way to define specific subsets of users or entitlements based on certain attributes, but their primary function is not included in the certification process.

Certification scoping is typically aimed at ensuring that the right users have the right access by evaluating their permissions and entitlements across the organization. While segments can be helpful in organizing users or entitlements, they do not directly influence how certifications are scoped or executed. This clarifies that segments are not intended for use in defining the scope of what is subject to certification, which is why stating that they cannot be used in certification scoping reflects an understanding of their limitations.

Other statements reflect misunderstandings about the purpose and functionality of segments, whether suggesting a broader application in various certification tasks, considering user inclusiveness in certifications, or restricting segment validity solely to role-based access. These notions misinterpret the specific role that segments play within the certification framework.