Chatta subito con l'assistenza
Chat con il supporto

Identity Manager 9.1 - Web Designer Web Portal User Guide

General tips and getting started Security keys (WebAuthn) Requests
Setting up and configuring request functions Requesting products Saved for Later list Pending requests Displaying request history Resubmitting requests Canceling requests Renewing products with limit validity periods Unsubscribing products Displaying approvals Undoing approvals Request inquiries Auditing requests Escalated requests
Attestation
Managing attestations Attestors for attestation cases Sending attestation reminders My attestation cases Pending attestations Displaying attestation history Attestation inquiries Auditing attestations Escalation
Compliance Responsibilities
My responsibilities
Specifying keywords for requestable products Managing my departments Managing my application roles Managing my devices Managing my business roles Managing my identities Managing my cost centers Managing my multi-request resources Managing my multi requestable/unsubscribable resources Managing my resources Managing my software applications Managing my locations Managing my system entitlements Managing my system roles Managing my assignment resources
Delegating tasks Ownerships Auditing
Auditing departments Auditing application roles Auditing devices Auditing business roles Auditing identities Auditing cost centers Auditing multi-request resources Auditing multi requestable/unsubscribable resources Auditing resources Auditing software Auditing locations Auditing system roles Auditing system entitlements Auditing assignment resources
Governance administration
Managing departments Managing business roles Managing identities Managing cost centers Managing multi-request resources Managing multi requestable/unsubscribable resources Managing resources Managing locations System entitlements Managing system roles Managing assignment resources
Applications Calls Discovering your statistics on the home page Appendix: Attestation conditions and approval policies from attestation procedures Appendix: Page and menu descriptions
Information (Menu description) My requests (Menu description) Profile (Menu description) Help (Menu description) Request (Menu description) Attestation (Menu description)
My attestation status (page description) My actions (page description)
Pending attestations (page description)
Pending attestations – Attestation policies (page description) Pending attestations: One Identity Manager application roles (page description) Pending attestations: Departments (page description) Pending attestations: System roles (page description) Pending attestations: Locations (page description) Pending attestations: Business roles (page description) Pending attestations: PAM assets (page description) Pending attestations: PAM user accounts (page description) Pending attestations: Employees (page description) Pending attestations: Cost centers (page description) Pending attestations: User accounts (page description) Pending attestations: System entitlements (page description) Pending attestations: Resources (page description) Pending attestations: Assignment resources (page description) Pending attestation: Multi-request resources (page description) Pending attestations: Software (page description) Pending attestations: Multi requestable/unsubscribable resources (page description) Pending attestations: Devices (page description) Pending attestations – approvals (page description)
Attestation history (page description) Attestation inquiries (page description)
Auditing (page description) Governance administration (page description) Attestation escalation approval (page description)
Compliance (Menu description) Responsibilities (Menu description)
My responsibilities (page description)
Identities (page description) System entitlements (page description) Business roles (page description) System roles (page description) Departments (page description) Cost centers (page description) Locations (page description) Application roles (page description) Resources (page description) Assignment resources (page description) Multi-request resources (page description) Software (page description) Multi requestable/unsubscribable resources (page description) Devices (page description)
Delegating tasks (page description) Ownerships (page description) Auditing (page description)
Auditing – Departments (page description) Auditing – Application roles (page description) Auditing – Device (page description) Auditing – Business roles (page description) Auditing – Identity details (page description) Auditing – Cost center (page description) Auditing – Multi-request resources (page description) Auditing – Multi requestable/unsubscribable resources (page description) Auditing - Resources (page description) Auditing – Software (page description) Auditing – Locations (page description) Auditing – System roles (page description) Auditing - Assignment resource (page description) Auditing – Active Directory (page description) Auditing – Azure Active Directory (page description) Auditing – Custom target system group (page description) Auditing – Google Workspace (page description) Auditing – Domino (page description) Auditing – LDAP (page description) Auditing – Oracle E-Business Suite (page description) Auditing – Privileged Account Management (page description) Auditing – SAP R/3 (page description) Auditing – Unix (page description)
Governance administration (page description)
Business roles (page description) Identities (page description) Multi-request resources (page description) Multi requestable/unsubscribable resources (page description) Organization (page description) Resources (page description) System entitlements (page description) System roles (page description) Assignment resources (page description)
Calls (Menu description)

Target systems

There are a number of statistics available to you for target systems. The following statistics are available.

Table 61: Target system statistics

Statistics

Description

Pending attestation by system entitlements

Displays pending attestation by system entitlements.

Number of user accounts with a risk index of more than {0}

Displays the number of user accounts with a risk index more than specified value.

This statistic is also available for the number of entitlements with a risk index more than specified value.

User accounts having risk higher {0} by domain

Displays user accounts with a risk index more than specified value by domain.

This statistic contains other criteria.

  • Entitlements having risk higher that a specified value by domain.
  • Entitlements having risk higher that a specified value by department.

Employees without user accounts

Displays identities without user accounts.

Entitlements without requests

Displays entitlements without a request.

This statistic contains other criteria.

  • Active Directory
  • Oracle E-Business Suite
  • LDAP
  • SAP R/3
  • SharePoint

Groups with / without user account assignments

Displays groups with or without user account assignments.

This statistic contains other criteria.

  • Active Directory
  • LDAP
  • SAP R/3
  • SharePoint
  • Notes
  • Groups, roles, and profiles with/without user account assignments SAP R/3

Inactive identities with enabled user accounts

Displays inactive identities that have an enabled user account.

Locked user accounts of enabled employees

Displays locked user accounts of active identities.

Appendix: Attestation conditions and approval policies from attestation procedures

When attestation policies are created or edited (see Setting up attestation policies or Editing attestation policies), you specify attestation conditions and approval policies:

  • Attestation procedures specify which objects to attest. They define the properties of the attestation objects to attest.

  • There are different attestation conditions for each attestation procedure that you use to specify which objects to attest.

  • Attestors for each attestation case are determined by approval policies.

In the following chapter, you will find more information about the various attestation procedures and associated approval policies and attestation conditions.

Attesting primary departments

Primary identity memberships in departments are attested using the Primary department attestation attestation procedure.

Condition

Description

All departments

Attests primary memberships in all departments.

Specific departments

Select the departments with primary memberships to attest.

Use and to switch between hierarchical and list view. Multi-select is possible.

Specific child departments

Select the departments with primary memberships to attest. In addition, primary memberships of all child departments under this department are attested.

Use and to switch between hierarchical and list view. Multi-select is possible.

Departments with defined risk index

Use the ruler to specify a risk index range. Attests primary memberships in departments with a risk index in the chosen range.

Departments with matching name

Enter part of a name of departments with primary memberships to attest. All departments that have this pattern in their name are included.

Example: Per finds "Person", "Personal", "Perfection" and so on.

Attesting primary business roles

Primary identity memberships in business roles are attested using the Primary business role attestation attestation procedure.

Condition

Description

All business roles

Attests primary memberships in all business roles.

Specific business roles

Select the business roles with primary memberships to attest.

Use and to switch between hierarchical and list view. Multi-select is possible.

Specific child business roles

Select the business roles with primary memberships to attest. In addition, primary memberships of all child business roles under this business role are attested.

Use and to switch between hierarchical and list view. Multi-select is possible.

Business roles with specific role classes

Select the role classes. Attests primary membership in business roles with this role class.

Business roles with defined risk index

Use the ruler to specify a risk index range. Attests primary memberships in business roles with a risk index in the chosen range.

Business roles with matching name

Enter part of a name of business roles with primary memberships to attest. All business roles that have this pattern in their name are included.

Example: Per finds "Person", "Personal", "Perfection" and so on.

Related Documents

The document was helpful.

Seleziona valutazione

I easily found the information I needed.

Seleziona valutazione