Attestation – Application role (page description)
To open the Attestation – Application role page go to Responsibilities > My Responsibilities > One Identity Manager application roles > select application role > Attestation.
On the Attestation – Application role page, you can:
The following tables give you an overview of the various features and content on the Attestation – <One Identity Manager application role page.
Table 423: Columns
|
Display name |
Shows the name of the object included in the attestation case. |
|
Attestation policy |
Shows the name of the attestation policy in use. |
|
State |
Shows the current status of the attestation case.
The following status' are possible:
-
Pending: The attestation case is not closed yet and must still be approved.
-
Approved: The attestation case was approved. In the details pane, on the Workflow tab, you can see why the attestation case was granted approval.
-
Denied: The attestation case was denied. In the details pane, on the Workflow tab, you can see why the attestation case was denied approval. |
|
New |
Shows whether the attestation case is new. New cases have not been granted approval yet but might have been denied approval before. |
|
Due date |
Shows by when the attestation case must be completed. |
|
Risk index |
Show the attestation case's risk index. |
TIP: You can show less data by using the column filters. For more information, see Filtering.
History – Application role (page description)
Open the History – Application role page by navigating through Responsibilities > My Responsibilities > One Identity Manager application roles > select application role > History.
On the History – Application role page, you can show all the application role's changes (see My application roles' history).
NOTE: Which changes are shown depends on your system's configuration.
The information is divided out on to three tabs:
-
Events: Shows all the events, which affect an application role, either on a timeline or in a table (see Displaying my application roles' history).
TIP: To navigate along the timeline, click in the pane and move the mouse left or right whilst holding down the left button.
To zoom in or out, turn the mouse wheel.
-
Status overview: Shows an overview of all assignments (see Displaying the status overview of my application roles). It also shows you how long each change was valid for. Use the status overview to track when changes were made and by whom. This way, you not only see the initial and current status but you also see all the steps in between.
-
Status comparison: You can select a date and display all the changes made from then until now (see Comparing statuses of my application roles). You can also show what the value of the property was at the selected point in time and what the value is now.
The following tables give you an overview of the different functions and content on the History – Application role page.
Table 424: Controls
|
Events tab |
|
Filter by |
Use this function to filter the changes by a specific criteria. For example, you can just display changes from a certain user.
TIP: To remove the filter again, click  (Reset filter) next to the corresponding filter. |
|
Switch to table view |
Use this button to display the changes in table form. |
|
Switch to timeline view |
Use this button to display the changes as a timeline. |
|
Status comparison tab |
|
Time and date picker |
Select from which point on you want to see the changes. |
|
Display changed values only |
Deselect the check box if you also want to see properties that have not changed since they were created. |
Table 425: Controls in the details pane of a change
|
Compare |
Opens the Status comparison tab.
Use this button to show all the changes that were made from the selected point in time until now (see Comparing statuses of my application roles). You can also show what the value of the property was at the selected point in time and what the value is now. |
Table 426: Columns
|
Events tab (table view) |
|
Change type |
Shows the type of change. |
|
Property |
Shows the name of the property that was changed. |
|
Display |
Shows the value that was changed. For example, the name of a department. |
|
Date |
Shows the date the change was made. |
|
User |
Shows the user that made the change. |
|
Status overview tab |
|
Display |
Shows the type of change. |
|
Property |
Shows the name of the property that was changed. |
|
Value |
Shows the value that was changed. For example, the name of a department. |
|
Run started |
Shows when the change was made. |
|
End |
Shows for how long the changed value applied or whether it is currently in use. |
|
Status comparison tab |
|
Modified |
Show whether the change took place or not. |
|
Change type |
Shows the type of change. |
|
Object type |
Show the type of object involved in the change. |
|
Property |
Show the name of the object that was changed. |
|
Historical value |
Shows the value before the change was made. |
|
Current value |
Shows the value that is currently in use. |
TIP: You can show less data by using the column filters. For more information, see Filtering.
Usage – Application role (page description)
Open the Usage – Application role page by navigating through Responsibilities > My Responsibilities > One Identity Manager application roles > select application role > Usage.
On the Usage – Application role page, you can see the roles and organizations that belong to the identities to which this application role is assigned (see Displaying role memberships of my application roles' members).
The information is displayed as a hierarchical chart, which shows you more about the role inheritance.
The following tables give you an overview of the various features on the Usage – Application role page.
Compliance reports – Application role (page description)
To open the Compliance Reports – Application role page go to Responsibilities > My Responsibilities > One Identity Manager application roles > select application role > Compliance Reports.
On the Compliance Reports - Application role page you can:
The information is divided into three parts:
-
Policy violations: Shows you all the current policy violations caused by the application role.
-
Compliance rule violations: Shows you the current rule violations of the identities to which the application role is assigned.
-
Identities: Risk index and authorizations: Displays all identities to which the application role is assigned. Additionally, the number of assigned entitlements and the risk index of these identities are displayed.
To display the information, select the item you want from the View menu.
The following table gives an overview of the content of the Compliance reports – Application role page.
Table 428: Columns
|
Policy violations |
|
Violating object |
Shows you which object caused the rule violation. |
|
Policy |
Shows you the policy that was violated. |
|
Status |
Shows you the status of the rule policy. |
|
Compliance rule violations |
|
Employee |
Shows you the identity that caused the rule violation. |
|
Rule violation |
Shows you the violated rule. |
|
Approval state |
Shows you how or whether approval is granted to the rule violation. |
|
Risk index (reduced) |
Shows the risk index taking mitigating controls into account. A rule’s risk index can be reduced by a significance amount after mitigating controls have been applied.
Mitigating controls are processes that exist outside the One Identity Manager solution and that reduce the risk of violation. For more information, see Compliance – Governance Administration. |
|
Identities: Risk index and entitlements |
|
Identities |
Shows you the identity to which this application is assigned. |
|
Risk index (calculated) |
Shows you the identity's calculated risk index. |
|
Assigned permissions |
Shows you all the entitlements assigned to this identity. |
TIP: You can show less data by using the column filters. For more information, see Filtering.
