• Site Map
• Contact Us

• Home
• Our Company
  • Customers
  • Careers
  • Contact Us
  • RSS & Blogs
• Products
  • Identity Manager
  • Password Manager
  • Group Manager
  • Privileged Access Manager
  • Download evaluation
  • Releases
  • CCC
• Solutions
  • Security / GRC
  • Reducing IT support cost
  • Improve user service
• Support
  • Shipping products
  • Supported versions
  • Portal login
  • Report problem
• Services
  • Solution delivery
  • Methodology
  • Education
  • Upgrades
  • AdMax Program
  • Hitachi ID Systems-Managed IAM
  • Guarantee
• News &  Events
  • Press Releases
  • Press Coverage
  • Archived Webinars
• Resource Center
  • White Papers
  • Independent Reviews
  • Brochures
  • Slide Decks
  • Case Studies
  • Regulatory Compliance
  • Certifications
  • Community
• Partners
  • Technology Partners
  • Channel Partners
  • System Integrators and Consultants
  • Managed Service Providers
  • Public Sector
  • Partner Portal
  • Online partner application

Security Secure User Administration Global Access Reporting

Report on users and entitlements - Hitachi ID Identity Manager

One of the key elements of both security management and regulatory compliance is to periodically review who has access to systems, to find exceptions, and to remove them.

Global access reporting includes finding and eliminating dormant and orphan accounts, reviewing the access rights of current users to find entitlements that are no longer required, and the ability to simply report on "who has what."

Hitachi ID Identity Manager comes with built in capabilities to meet these security reporting requirements, including: Identity Manager provides many built-in reports, including:

• Users: list selected users or those with specific attributes or entitlements.
• Targets: list selected target systems or those accessible by some users.
• Orphans: list login IDs on target systems not attached to active user profiles or with too-old last-login dates.
• Workflow:
  • Authorizers: list available authorizers and their attached resources.
  • Roles: list roles and their component templates.
  • Templates: list templates, their dependencies and role membership.
  • Requests: list current and closed change requests in the system.
• Inventory: list physical objects under management and their locations.

In addition, Identity Manager has an open schema and data access layer, allowing customers to develop their own security reports. All data in Identity Manager is available via SQL and accessible using standard analytical tools (Crystal Reports, Cognos, MS-Excel, SQL queries, etc).

The schema is well documented and is available to all product licensees and evaluators under NDA. The current release schema documentation is about 127 pages long, and includes detailed descriptions of every field, table, relation, value constraint, etc.

Data available through Identity Manager includes:

• A list of IDs per user.
• A list of IDs per system.
• A list of IDs per group.
• Allocation of login IDs to user profiles.
• Full detail of transaction history.
• Additional identity attributes (e.g., roles, employee ID) for users who were created using Identity Manager.
• Select identity attributes drawn from target systems -- such as last login time/date, account enabled/disabled, etc.

Identity Manager includes a number of standard reports, available through a web user interface, from the command-line, or by e-mail:

• Orphan and dormant accounts.
• Users who have accounts on specific systems.
• Templates and roles that a particular user has been assigned.
• User groups available on target systems.
• Membership of users in user groups on target systems.
• Transaction history per time period.
• Authorizer actions.
• Delegations (current and pending).
• Implementer definitions.
• Physical inventory availability.
• Requests, by status, state and result.
• Request statistics.
• Identity attributes, by user and by system.
• Past Reports.

© Hitachi ID Systems, Inc. . All rights reserved.