Skip to main content

Hitachi ID Identity Manager Screen Recordings - Reports

Users and accounts


Play movie

Content:

  • List of users, with and without identity attributes.
  • List of accounts on a given system.

Key concepts:

  • The simplest reports in any IAM system are lists of users and accounts.
  • Built-in Hitachi ID Identity Manager reports can enumerate users, attributes, accounts, group memberships, roles and more.

Orphan and dormant accounts


Play movie

Content:

  • Shows accounts with no known owner.

Key concepts:

  • Built-in reports make it easy to find orphan and dormant accounts:
    • Orphan users are user profiles with no login accounts.
    • Orphan accounts have no known owner.
    • Dormant accounts have had no recent login activity.
    • Dormant profiles have all-dormant accounts.

Violations of segregation of duties rules


Play movie

Content:

  • Finds users who violate any segregation of duties (SoD) rule.
  • Finds users whose violation of an SoD rule has been approved.

Key concepts:

  • SoD reports are a detective control -- i.e,. they find already-existing violations.
  • There is also a preventive control, embedded in the change request workflow.
  • SoD violations may be approved, for example if they are a legitimate situation that the policy did not take into account.

Detailed change history


Play movie

Content:

  • Displays all changes made to users, accounts and groups as a result of workflow requests.

Key concepts:

  • Change requests are retained indefinitely.
  • Details including what changed, who requested the change and who authorized it are accessible via built-in reports.
  • Changes detected on target systems (i.e., not initiated by Identity Manager) are also available.

Report 2 PDR


Play movie

Content:

  • Schedule a report to periodically scan for dormant accounts and automatically disable them.

Key concepts:

  • Report output can be fed back into the request system, for Actionable Analytics.
  • Columns in each row are mapped to input fields on the selected request form.
  • Rows already processed in previous report runs are omitted, to avoid requesting the same remediation repeatedly.
  • The process can be run once, interactively, or scheduled to repeat periodically.

Read More:

  • Onboarding New Users:
    Creation of new identities or accounts, as a consequence of requests or their appearance in a system of record (SoR, such as HR).
  • Access Requests:
    Enable users to update their own profiles and request access to shares, folders, SharePoint Sites, groups and more in a self-service fashion.
  • Access Certification:
    Invite managers and resource owners to periodically review users and entitlements, so as to remove no-longer-required security entitlements and correct manager/subordinate relationships.
  • Reports:
    A small sample of the reports that Hitachi ID Identity Manager can generate regarding users, their entitlements and change history.
  • Termination:
    Terminating users.
page top page top