Use the controls in the grid heading row to sort report results or rearrange the columns of data.
To sort or move columns
|NOTE: An arrow in the column heading identifies the sort criteria and order, ascending or descending, being used to display information.|
The toolbar at the top of Reports contains these options.
Refresh updates the entitlement report.
One Identity Safeguard for Privileged Passwords provides these entitlement reports.
Lists information about the accounts a selected user is authorized to request.
Lists information about the accounts associated with a selected asset and the users who have authorization to request those accounts.
Lists information about the users who have authorization to request a selected account, including asset and directory accounts.
To run an entitlement report
Browse to select specific objects for the report.
In the selection dialog, select one or more objects to be included in the report, then click (or tap) OK.
The top of the report displays the following information:
Note: For Entitlements by Assets, you can continue to drill down into the details of an item. For example, you can view both the Total Accounts tab and the People tab to see more details about the users that can request the accounts on an asset. Select an item from the results to drill down further into the details about the users and the accounts.
The Administrative Tools allow you to add all the objects you need to write access request policies, such as users, accounts, and assets. From this view, you can also configure all of the Safeguard for Privileged Passwords settings.
Note: You must have administrator permissions to use the Administrative Tools and the administrator permissions you have determine what you can view and modify.
The navigation pane along the left side of the console gives you access to these administrative tools.
|Administrative Tools||Description||Administrator permissions|
|Toolbox||Where you can gain quick access to all the tasks you can perform from a single portal.||Users with any Safeguard administrator privileges.|
|Accounts||Where you associate account identities with managed systems.||Asset Administrator or Auditor|
|Account Groups||Where you define sets of accounts which you can add to the scope of an access request policy.||Auditor or Security Policy Administrator|
|Assets||Where you add computers, servers, network devices, or applications to be managed by a Safeguard for Privileged Passwords Appliance.||Asset Administrator or Auditor|
|Asset Groups||Where you define sets of assets which you can add to the scope of an access request policy.||Auditor or Security Policy Administrator|
|Directories||Where you add external identity providers such as Microsoft Active Directory to Safeguard for Privileged Passwords.||Auditor or Directory Administrator|
|Entitlements||Where you specify the access request policies that restrict system access to authorized users.||Auditor or Security Policy Administrator|
|Partitions||Where you define collections of assets which can be used to segregate assets for delegation.||Asset Administrator, Auditor, or delegated partition owner|
Where you configure Safeguard for Privileged Passwords to run backups, install updates, manage clusters, manage certificates, enable event notifications, configure external integration, define profile configurations settings, define user password rules, define discovery rules, and run troubleshooting tools.
Users with any Safeguard administrator privileges, however, the settings available depend on the administrative permissions assigned.
|Users||Where you set up users who can log into Safeguard for Privileged Passwords.||
Bootstrap, Asset Administrator, Auditor, Authorizer Administrator, Help Desk Administrator, Security Policy Administrator, or User Administrator
|User Groups||Where you define sets of Safeguard for Privileged Passwords users which you can add to an entitlement.||
Bootstrap, Auditor, Authorizer Administrator, Security Policy Administrator, or User Administrator