Chat now with support
Chat with Support

Enterprise Single Sign-On 9.0.2 - One Identity Enterprise Access Management Console Administration Guide

Preface Overview Authenticating to EAM Console and Managing Protection Modes Searching the Directory Tree Managing administrators Managing Security Profiles
Managing time slices Managing Password Format Control Policies Managing User Security Profiles Managing Access Point Security Profiles Managing Application Security Profiles Defining Security Profiles Default Values Managing User and Access Point Security Profiles Priorities
Managing directory objects
Managing applications Managing users Managing access points Managing representative objects Managing clusters of access points Selecting a domain controller
Importing/Exporting security profiles and directory objects Managing smart cards Managing SA server devices Managing RFID tokens Managing biometrics Managing Mobile Devices Enabling the public key authentication method Managing Emergency Accesses Managing audit events Managing reports Customizing configuration files Creating scripts Basic syntax of regular expressions Listing audit events and error codes Correspondence between profiles and administration rights Report Models and Parameters List Custom Group Files Format

Retrieving user identifier from audit identifier


The following procedure explains how to get a user identifier from an audit identifier.


  1. Open the Audit panel and in the Audit menu, click Solve Audit ID.
    • The Solve audit ID window appears.

  2. Type the audit identifier to solve in the field and click the Add button.
    • The audit identifier is added to the Audit ID list.
  3. Select the audit identifier line in the audit identifier list and click Solve.

    NOTE: If you click Solve without selecting an audit identifier, the entire list of audit identifiers is solved.
    • The corresponding user name appears in the User Name column.
  4. Click the Close button to close the window.


Retrieving audit events

To retrieve the complete list of audit events, run the EAM Errors and Events program (ESSOERRORS.exe), which allows you to list all the existing audit events: see Appendix Listing audit events.

Managing reports

The Reporting module enables you to obtain reports on the information managed by EAM console in different forms:

  • Either in form of PDF files: in that case the generation of a report is based on predefined models to set and to generate on demand or periodically.
  • Or directly accessible on screen and exportable in CSV format: in that case, the available pieces of information are:
    • The list of accounts associated with a list of applications.
    • The list of accounts associated with a list of users.
    • The list of administrators located in your administered organizations and their corresponding administration profile(s).

NOTE: The generation of a report may require several minutes to complete, depending on the selected time period, the type of requested report and the administrator’s rights.

In this section:

Generating PDF reports

Generating PDF reports

In this section:


You can generate on-demand or periodic PDF reports and you can also configure the reports module so that the end-users can download the PDF reports which they are entitled to.


NOTE: You can customize the graphic style of the PDF reports: refer to the One Identity EAM Customization Guide.

The data used to generate the reports is restricted to the data visible and accessible by the administrator: the LDAP objects and audit events visible in the EAM console.

The generated report can be signed and/or encrypted. Once it is generated, a report generation notification can be sent automatically by email to the user to download the report through Authentication Manager.

The generation of on-demand reports is done through the PDF reports tab.

The generation of periodic reports is done through the Periodic PDF reports tab.

The following table shows all the steps to follow to generate a PDF report:






Managing Report Models


Managing Permissions


On-demand Generation


(Creating a Periodic Generation : optional)

Before starting

The different available actions regarding the PDF reports are submitted to the possession of the following related rights:

  • Reporting: Administration: to manage the configuration of the report generation requests.
  • Reporting: Creation/modification: to authorize the administrators to create/modify all the report generation requests.
  • Reporting: Model import: to authorize the administrators to import new report models or to update the existing ones.
  • Reporting: Report Deletion: to authorize the administrators to delete the report generation requests and the associated reports.
  • Reporting: Model deletion: to authorize the administrators to delete the report models.
  • Reporting: View reports: to authorize the administrators to download a report.

NOTE: For more information on administration roles, see Managing administrators.
Related Documents