One Identity Safeguard 2.5 - Evaluation Guide

Exercise 5: Using the Activity Center

The Activity Center is the place to go for troubleshooting issues. The appliance records all activities performed within One Identity Safeguard for Privileged Passwords. Any administrator has access to the audit log information; however, your administrator permission set determines what audit data you can access.

To run an activity report

  1. Log in as the Auditor.

    Note: The Auditor has read-only access to all features.

  2. From the Home page, navigate to the  Activity Center.
  3. Use the default query settings: I would like to see all activity occurring within the last 24 hours.
  4. Click Run.
  5. Explore the results.
  6. Double-click an event to see more details; Double-click to close the details.

To filter the content

  1. Open the User filter list and select AssetAdmin.
  2. Sort the records so the latest time is listed first.
  3. Double-click a password event to view the details of the event.

Stay logged in as the Auditor for the next exercise.

Exercise 6: Auditing access requests

The Request Workflow dialog allows you to audit the transactions that took place within a password release or session request. This dialog can be accessed using the Workflow button in the Activity Center view when an access request event is selected in an activity audit log report.

NOTE: The Workflow button also appears to reviewers for completed access requests.

To view the request workflow for a password release or session request

  1. Log in as the Auditor.
  2. From the Home page, navigate to the  Activity Center.
  3. Run an activity audit log report.
  4. On the results page, select an access request event and click Workflow.

    The Request Workflow dialog displays the workflow transactions from request to approval to review.

  5. Select Show Details to view more information about the request, approval, and review transactions of that request.

Stay logged in as the Auditor for the next exercise.

Exercise 7: Running reports

 Reports allows the Auditor and Security Policy administrators to view and export entitlement reports that show which assets and accounts a selected user is authorized to access.

One Identity Safeguard for Privileged Passwords provides these entitlement reports.

Table 6: Entitlement reports
Entitlements By... Description
User

Lists information about the accounts a selected user is authorized to request.

Asset

Lists information about the accounts associated with a selected asset and the users who have authorization to request those accounts.

Account

Lists information about the users who have authorization to request a selected account, including asset and directory accounts.

To run an entitlement report

  1. As Auditor, select Reports from the Safeguard for Privileged Passwords desktop Home page.
  2. Choose to view entitlements by Asset.
  3. Browse to select all assets and click OK.
  4. In the top pane of the results screen select an asset to see the details.
  5. View both the Total Accounts tab and the People tab.
  6. Select an item from the results to drill down into the details about the users and the accounts.
  7. Click Export to create a file of the search results in a location of your choice.
  8. Log out.

Discovery exercises

These exercises will guide you through a step-by-step evaluation of the Safeguard for Privileged Passwords discovery features:

Related Documents