Overview of all Assignments
Overview of all Assignments
The report "Overview of all Assignments" is displayed for certain objects, for example, permissions, compliance rules or roles. The report finds all the roles, for example, departments, cost centers, locations, business roles and IT Shop structures in which there are employee who own the selected base object. In this case, direct as well as indirect base object assignments are included.
Example
- If the report is created for a resource, all roles are determined in which there are employees with this resource.
- If the report is created for a group, all roles are determined in which there are employees with this group.
- If the report is created for a compliance rule, all roles are determined in which there are employees with this compliance rule.
- If the report is created for a department, all roles are determined in which employees of the selected department are also members.
- If the report is created for a business role, all roles are determined in which employees of the selected business role are also members.
To display detailed information about assignments
- To display the report, select the base object from the navigation or the result list and select the report Overview of all assignments.
- Use the
Used by button in the report's toolbar to select the role class (department, location, business role or IT Shop structure) for which you determine if roles exist in which there are employees with the selected base object.
All the roles of the selected role class are shown. The color coding of elements identifies the role in which there are employees with the selected base object. The meaning of the report control elements is explained in a separate legend. In the report's toolbar, click
to open the legend.
- Double-click a control to show all child roles belonging to the selected role.
- By clicking the
button in a role's control, you display all employees in the role with the base object.
- Use the small arrow next to
Figure 6: Toolbar for Report "Overview of all assignments"
| Icon | Meaning |
|---|---|
| |
Show the legend with the meaning of the report control elements |
 |
Saves the current report view as a graphic. |
| |
Selects the role class used to generate the report. |
|
|
Displays all roles or only the affected roles. |
Appendix: Configuration Parameters for Managing SharePoint
Appendix: Configuration Parameters for Managing SharePoint
The following configuration parameters are additionally available in One Identity Manager after the module has been installed.
| Configuration parameter | Description |
|---|---|
| TargetSystem\SharePoint | SharePoint is supported. The parameter is a precompiler dependent configuration parameter. The database needs to be recompiled after the configuration parameter has been changed. |
| TargetSystem\SharePoint\Accounts | Parameter for configuring SharePoint user accounts. If this parameter is set, settings for SharePoint user accounts can be configured. |
| TargetSystem\SharePoint\Accounts\MailTemplateDefaultValues | This configuration parameter contains the mail template used to send notifications if default IT operating data mapping values are used for automatically creating a user account. |
|
TargetSystem\SharePoint\DBDeleteOnError |
If a error occurs adding a user account in a target system, the object is deleted from the database afterward. |
| TargetSystem\SharePoint\DefaultAddress | This configuration parameter contains the default email address for messages when actions in the target system fail. |
| TargetSystem\SharePoint\MaxFullsyncDuration | Specifies the maximum runtime for synchronization. No recalculation of group memberships by the DBQueue Processor can take place during this time. |
|
TargetSystem\SharePoint\PersonAutoDefault |
Automatic employee assignment for user accounts added to the database outside synchronization based on the given mode. |
| TargetSystem\SharePoint\PersonAutoFullSync |
This configuration parameter specifies the mode for automatic employee assignment for user accounts added to or updated in the database through synchronization. |
Appendix: Default Project Template for SharePoint
Appendix: Default Project Template for SharePoint
A default project template ensures that all required information is added in the One Identity Manager. This includes mappings, workflows and the synchronization base object. If you do not use a default project template you must declare the synchronization base object in One Identity Manager yourself.
Use a default project template for initially setting up the synchronization project. For custom implementations, you can extend the synchronization project with the .Synchronization Editor
The template uses mappings for the following schema types.
| Schema typeDefines an object type within a schema. Refers to exactly one table or view of the database based schema or exactly one object type of the non-database based schema. in SharePoint |
Table in the One Identity Manager schema |
|---|---|
| SPAlternateUrl | SPSAlternateURL |
| SPClaimProvider | SPSClaimProvider |
| SPFarm | SPSFarm |
| SPGroup | SPSGroup |
| SPLanguage | SPSLanguage |
| SPPolicy | SPSPolicyUser |
| SPPolicyRole | SPSPolicyRole |
| SPPrefix | SPSPrefix |
| SPQuotaTemplate | SPSQuota |
| SPRoleDefinition | SPSRole |
| RoleAssignment | SPSRlAsgn |
| SPSite | SPSSite |
| SPUser | SPSUser |
| SPWeb | SPSWeb |
| SPWebApplication | SPSWebApplication |
| SPWebTemplate | SPSWebTemplate |