User Groups tab (user)
The User Groups tab displays the user groups in which the selected user is a member.
The User Groups tab is available to a user with Auditor or Security Policy Administrator permissions and to the User Administrator for directory users (not for local users).
To access User Groups:
desktop client: Navigate to Administrative Tools | Users | User Groups.
web client: Navigate to User Management | Users | 
(Edit) | User Groups.
Use the following buttons on the details toolbar to manage the user groups associated with the selected user.
Table 253: Users: User Groups toolbar
|
 Add User Group / Add
|
Add the user to one or more user groups to the user. For more information, see Adding a user to user groups. |
|
 Remove Selected / Remove
|
Remove the selected user group from the selected user. |
|
 Refresh
|
Retrieve and display an updated list of user groups associated with the selected user. |
|
 Search
|
To locate a specific user group in this list, enter the character string to be used to search for a match. For more information, see Search box. |
Owned Objects tab (user)
The Owned Objects tab displays the objects which the selected user directly manages.
Navigate to Administrative Tools | Users | Owned Objects.
Table 254: Users: Owned Objects tab properties
| Type |
The type of object. |
|
Name |
The name of the object. |
|
Direct |
This column indicates the ownership of the object was assigned directly rather than through the use of a tag. |
|
Via Group |
This column indicates the ownership of the object was assigned via group. |
|
Via Tag |
This column indicates the ownership of the object was assigned through the use of a tag. |
Use the following buttons on the details toolbar to manage the objects owned by the selected user.
Table 255: Users: Owned Objects toolbar
|
Refresh |
Retrieve and display an updated list of objects associated with the selected user. |
|
Search |
To locate a specific object in this list, enter the character string to be used to search for a match. For more information, see Search box. |
Asset Administrators and Auditors can also generate reports showing more detailed information on the ownership of specific objects (including effective ownership). For more information, see Running an ownership report.
Entitlements tab (user)
The Entitlements tab displays the entitlements in which the selected user is a member. The Entitlements tab is only available to a user with Auditor or Security Policy Administrator permissions.
To access Entitlements:
- desktop client: Navigate to Navigate to Administrative Tools | Users | Entitlements.
- web client: Navigate to User Management | Users | (Edit) | Entitlements.
Table 256: Users: Entitlements tab properties
| Name |
The name of the entitlements in which the selected user is assigned as a user. |
|
( web client only) Description |
The description of the entitlement. |
| Access Request Policies/ Policies |
The number of unique access request policies in the entitlement. |
| Accounts |
The number of unique accounts in the selected entitlement. |
| Users |
The number of unique users in the entitlement. |
| User Groups |
The names of the user groups that associate the selected user to the entitlement.
NOTE: If the selected user is associated with the entitlement explicitly and not through user group membership, then this column is blank and the Direct Member column is True. |
| Direct Member |
Indicates True if the selected user was explicitly added to the entitlement as a user. For more information, see Adding users or user groups to an entitlement. |
Use the following buttons on the details toolbar to manage the entitlements associated with the selected user.
Table 257: Users: Entitlements tab toolbar
|
Add Entitlement / Add |
Add the selected user as a user of one or more entitlements. For more information, see Adding a user to entitlements. |
|
Remove Selected / Remove |
Remove the user from the selected entitlement. |
|
Refresh |
Update the list of entitlements. |
|
( desktop client only)  Details |
View additional details about the selected entitlement in a pop-up window. |
|
Search |
To locate a specific entitlement or set of entitlements in this list, enter the character string to be used to search for a match. For more information, see Search box. |
Linked Accounts tab (user)
The Linked Accounts tab displays the directory accounts linked to the selected user that can be used in session request policies to access the assets or accounts defined within the scope of the policy.
Accounts can be:
- Manually: Click
Add Linked Account from the details toolbar.
- Automatically: See Adding a directory user group and the check box labeled Automatically link Managed Directory Accounts.
Navigate to Administrative Tools | Users | Linked Accounts.
Table 258: Users: Linked Accounts tab properties
| Name |
The account name. |
| Domain Name |
The name of the domain where the linked account resides. |
| Service Account |
A check in this column indicates that the account is a service account. |
| Password Request |
A check in this column indicates that password release requests are enabled for the account. |
| Session Request |
A check in this column indicates that session access requests are enabled for the account. |
|
SSH Key Request |
A check in this column indicates that SSH key release requests are enabled for the account. |
|
Password |
A check in this column indicates that a password is set for the selected account. For more information, see Checking, changing, or setting an account password. |
|
SSH Key |
A check in this column indicates an SSH key is set for the account. For more information, see Checking, changing, or setting an SSH key. |
| Description |
Information about the selected account. |
Use the following buttons on the details toolbar to manage the linked accounts associated with the selected user.
