Chat now with support
Chat with Support

Identity Manager 8.0 - Target System Base Module Administration Guide

One Identity Manager Users for Managing Target Systems in Unified Namespace

One Identity Manager Users for Managing Target Systems in Unified Namespace

The following users are used for managing target systems in the Unified Namespace.

Table 11: Users
User Task

Target system administrators

Target system administrators must be assigned to the application role Target system | Administrators.

Users with this application role:

  • Administrate application roles for individual target systems types.
  • Specify the target system manager.
  • Set up other application roles for target system managers if required.
  • Specify which application roles are conflicting for target system managers
  • Authorize other employee to be target system administrators.
  • Do not assume any administrative tasks within the target system.

Target system managers

Target system managers must be assigned to the application role Target systems | Unified Namespace or a sub application role.

Users with this application role:

  • Obtain view of the objects in the connected target systems across all target systems.
  • Can create reports across all target systems.

If the users are also target system managers of the basic underlying target systems, you can manage these target systems through the Unified Namespace.

One Identity Manager administrators

  • Create customized permissions groups for application roles for role-based login to administration tools in the Designer, as required.
  • Create system users and permissions groups for non-role based login to administration tools, as required.
  • Enable or disable additional configuration parameters in the Designer, as required.
  • Create custom processes in the Designer, as required.
  • Create and configures schedules, as required.
  • Create and configure password policies, as required.

Displaying Unified Namespace Objects

Displaying Unified Namespace Objects

To display Unified Namespace objects

  • Select the category Unified Namespace.

    User accounts, system entitlements and structure elements of all the connected target systems are displayed hierarchically in the navigation view. This shows the master data and existing assignments of all objects. The object properties and assignments cannot be edited.

Reports about the Unified Namespace

Reports about the Unified Namespace

The One Identity Manager supplies various report with information about all the target systems mapped in the Unified Namespace. The data is combined and grouped by target system type.

Table 12: Data quality analysis Report
Report Description
Orphaned user accounts in all target systems This report shows all user accounts to which no employee is assigned. You can find the report in the category My One Identity Manager | Data quality analysis.
Unused user accounts in all target systems This report contains all user accounts, which have not been used in the last few months. You can find the report in the category My One Identity Manager | Data quality analysis.
System entitlement drifts in all target systems This report shows all system entitlements that are the result of manual operations in the target system rather than using the One Identity Manager provisioning engine. You can find the report in the category My One Identity Manager | Data quality analysis.
User accounts with an above average number of system entitlements This report contains all user accounts with an above average number of system entitlements. You can find the report in the category My One Identity Manager | Data quality analysis.
Unified Namespace user account system entitlements distribution The report shows an overview of the distribution of user accounts and system authorizations in Unified Namespace. You can find the report in the category My One Identity Manager | Target system overviews.

User account operations across all systems

This report shows modified user accounts from all target systems for a specific time period. You can find the report in the category My One Identity Manager | Target system overviews.

Related Documents