IdentityIQ Standard Reports
SailPoint provides a number of standard reports that can be run without changes. You can also use the standard reports to create custom reports that are specific to your needs. Use scope to control access to your report results.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off. The Report Layout configuration procedure is the same for all reports.
The reports are divided in to the following categories:
For step-by-step instructions on creating or editing a report, see Working With Reports.
Access Review and Certification Reports
Access Review Decision Report
The Access Review Decision Report includes information about the decisions made by certifiers for all items in non-archived access reviews that match the report criteria.
Report results are presented in several pages. The first page shows a summary, divided into two sections:
-
The Certification Statistics section shows a count of certifications of each type and the number of certification entities (e.g. identities, roles, account groups) and unique entities included in each certification category;
-
The Decision Statistics section shows the number of approved items, revoked items, allowed exceptions, and total decisions for each type of certification item type.
The pages following the summary show details of each access review in the report, displaying each certification entity and all certification items with the decisions that are currently recorded for each. The Decision Maker shows the user who actually made the certification decision, which may be someone other than the original certifier if the review was delegated, reassigned, or forwarded. The Decision column also indicates if the decision was made as part of a bulk certification, if that option was permitted by the installation's configuration.
This report is an archive-type report. Archive reports include end-of-period and task information that is formatted for easy dissemination of key audit information. Due to the large amount of data that is generated, the best option is to export the report results to a PDF file.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For more information on Standard Properties, see Standard Report Properties.
For more information on Report Layout, see Report Layout.
For step by step instructions on creating or editing a report, see Working With Reports.
Report Criteria
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Applications | Select the applications to include in the report. If no applications are specified, all applications are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. |
| Managers | The manager list to include in this report. If no managers are specified, access reviews for all managers are included. Click the arrow to the right of the suggestion field to display a list of all managers, or enter a few letters in the field to display a list of managers that start with that letter string. |
Access Review Signoff Live Report
The Access Review Signoff Live Report includes information on who signed off on a access review and if the signoff was completed. It shows the names of the signers (if any) and the signoff dates and indicates whether the reviews were electronically signed, along with the corresponding signature meaning. It also shows basic information about each access review, such as its name, the name of its parent certification, start date, due date, the access review owner, and tags associated with the review.
The detailed results of this report can be exported to a CSV or PDF file.
The Access Review Signoff Live Report consists of the following sections:
-
Report Options. These options are described in the Certification Properties table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step-by-step instructions on creating or editing a report, see Working With Reports
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Managers | The manager list to include in this report. If no managers are specified, access reviews for all managers are included. Click the arrow to the right of the suggestion field to display a list of all managers, or enter a few letters in the field to display a list of managers that start with that letter string. |
| Applications | Select the applications to include in the report. If no applications are specified, all applications are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Only access reviews for account groups on the selected applications are included in the report. |
| Groups | The groups to include in the report. Click the X next to an item in the inclusion list to remove it from the report. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Signed Off | Filter by the signed off status of certifications. |
| E-Signed | Use this field to filter results by certifications that include an electronic signature. |
Account Group Membership Access Review Live Report
This report shows line item details of all account group membership access reviews which meet the filter criteria. The purpose of this report is to show the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations. It also includes basic identifying information for the account group and member (such as account number, identity, application, and account group name).
The detailed results of this report can be exported to a CSV or PDF file.
The Account Group Access Review Live Report consists of the following sections:
-
Certification Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report.You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Applications | The applications to include in the report. If no applications are specified, all applications are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Only access reviews for account groups on the selected applications are included in the report. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Groups | The type of Account Group access reviews to include in this report, Membership or Permissions. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Account Group Permissions Access Review Live Report
This report shows line item details of all account group permissions access reviews which meet the filter criteria. The purpose of this report is to show the decisions made on each item along with the decision maker's name, any comments, and the current status of any applicable revocations. It also includes basic identifying information about each account group and permission (account group name, application, and permission).
The detailed results of this report can be exported to a CSV or PDF file.
The Account Group Access Review Live Report consists of the following sections:
-
Certification Properties. These options are described in the Certification Properties table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report.You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Applications | The applications to include in the report. If no applications are specified, all applications are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Only access reviews for account groups on the selected applications are included in the report. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Groups | The type of Account Group access reviews to include in this report, Membership or Permissions. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Advanced Access Review Live Report
The Advanced Access Review Live Report includes information on all non-archived advanced access reviews that match the criteria specified. The purpose of this report is to show the decisions made on each item, along with the decision maker's name and comments and the current status of any applicable revocations. It also includes basic identifying information about each line item (account name, identity first and last name, manager’s name, entitlement type and value, application, and instance).
The detailed results of this report can be exported to a CSV or PDF file.
The Advanced Access Review Live Report consists of the following sections:
-
Certification Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Groups | The groups or populations to include in the report. Click the arrow to the right of the field and select Populations, to display a select list of populations, or select a group factory name to display a select list of groups created by that factory. Click on populations and groups from the select lists to create the inclusion list for this report. Click an item in the inclusion list to remove it from the report. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Application Owner Access Review Live Report
The Application Owner Access Review Live Report includes information on all non-archived application owner access reviews that match the criteria specified. The purpose of this report is to show the decisions made on each item, along with the decision maker's name and comments and the current status of any applicable revocations.
The report includes a summary section at the top which provides summary counts of certifications, access reviews, identities, and certification items included in the report and then illustrates counts of item decisions reported by entitlement type (role, additional entitlement), representing each decision type(open, approved, and revoked) in a separate column in the graph.
The report body shows the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The detailed results of this report can be exported to a CSV or PDF file.
The Application Owner Access Review Report consists of the following sections:
-
Certification Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Applications | Select the applications to include in the report. If no applications are specified, all applications are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Only access reviews for the selected applications are included in the report. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Certification Activity by Application Report
The Certification Activity by Application Report includes information activity performed on non-archived certifications that match the specified criteria. It excludes access reviews from role composition or account group permission certifications, since they are not identity-focused certifications. Depending on the filter criteria, the report may include some line items from a certification but omit other line items; for example, if an application is specified, only line items from a manager certification that relate to the specified application are included on the report.
The report body shows the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The detailed results of this report can be exported to a CSV or PDF file.
The Certification Activity by Application Report consists of the following sections:
-
Certification Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
-
Name
-
Application from the list
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Applications | Select one application to include in this report, or leave this field blank to include all applications. To select an application, click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Note: Selecting more than one application is not supported, and causes the report to render no results. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Entitlement Owner Access Review Live Report
The Entitlement Owner Access Review Live Report includes information on all non-archived entitlement owner access reviews that match the criteria specified. The purpose of this report is to show the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The report includes a summary report at the top which shows a summary table of the number of certifications access reviews, identities, and certification items included in the report, along with a graph showing the relative counts of item decisions (e.g. open, approved, revoked).
The report body shows the each line item with its decision details and revocation status.
The detailed results of this report can be exported to a CSV or PDF file.
The Entitlement Owner Access Review Report consists of the following sections:
-
Certification Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Applications | Select one application to include in this report, or leave this field blank to include all applications. To select an application, click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. Note: Selecting more than one application is not supported, and causes the report to render no results. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Manager Access Review Live Report
The Manager Access Review Report includes information on all non-archived manager access reviews that match the criteria specified. The purpose of this report is to show the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The report includes a summary report at the top which shows a summary table of the number of certifications, access reviews, identities, and certification items included in the report, along with a chart illustrating the counts of item decisions by type (e.g. open, approved, revoked, exception allowed), separated into the categories of roles, additional entitlements, and policy violations.
The report body shows the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The detailed results of this report can be exported to a CSV or PDF file.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
The Manager Access Review Report consists of the following sections:
-
Certification Properties. These are described in the table below.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Managers | The manager list to include in this report. If no managers are specified, access reviews for all managers are included. Click the arrow to the right of the suggestion field to display a list of all managers, or enter a few letters in the field to display a list of managers that start with that letter string. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The manager certifications to include in this report. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Role Composition Access Review Live Report
This report includes information about all Role Composition Access Reviews in IdentityIQ. The Role Composition Access Review certifies that roles for which the reviewer is responsible are composed of the proper permissions and entitlements.
The purpose of this report is to show the decisions made on each item along with the decision maker's name and comments and the current status of any applicable revocations.
The detailed results of this report can be exported to a CSV or PDF file.
The Role Composition Access Review Report consists of the following sections:
-
Certification Properties. These are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
-
Name
-
Role
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Roles | The roles to include in the report. If no roles are specified, all roles are included. Click the arrow to the right of the suggestion field to display a list of all roles, or enter a few letters in the field to display a list of roles that start with that letter string. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The type of role certifications to include in this report; Membership or Composition. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Role Membership Access Review Live Report
This report includes information about all Role Membership Access Reviews in IdentityIQ. The Role Membership Access Review certifies that roles for which the reviewer is responsible are assigned to the correct identities. The report's purpose is to show the decisions made on each item, along with the decision maker's name and comments and the current status of any applicable revocations.
The detailed results of this report can be exported to a CSV or PDF file.
The Role Membership Access Review Report consists of the following sections:
-
Certification Properties. These are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
-
Name
-
Role
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Roles | The roles to include in the report. If no roles are specified, all roles are included. Click the arrow to the right of the suggestion field to display a list of all roles, or enter a few letters in the field to display a list of roles that start with that letter string. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The type of role certifications to include in this report; Membership or Composition. |
| Show excluded items | Show items that were excluded from the certification through a rule or other criteria. Note: This option disables the preview grid view and the option to sort by Status, Decision, Decision Maker, Application, or Recommendation. |
Targeted Access Review Live Report
The Targeted Access Review Live Report includes information about all targeted access reviews in IdentityIQ.
The detailed results of this report can be exported to a CSV or PDF file.
The Targeted Access Review Live Report consists of the following sections:
-
Certification Properties. These are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Certification Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Creation Start and End Date(s) | The access review creation date range. The report includes all access reviews create on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Signed Start and End Date(s) | The access review signed off on date range. The report includes all access reviews signed off on, on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Due Start and End Date(s) | The access review due date range. The report includes all access reviews due on or after the start date and on or before the end date. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Certification Tags | To filter access reviews based on their tags, select one or more tags. If multiple tags are selected, only access reviews that match all selected tags are included in this report. |
| Certification Group | The type of role certifications to include in this report; Membership or Composition. |
Account Group Reports
Account Group Members Report
The Account Group Members Report includes information about all the members of all the account groups and application objects. You can filter this report to include only account groups on a specific application or set of applications.
The detailed results of this report can be exported to a CSV or PDF file.
The Account Group Members Report consists of the following sections:
-
Report Options. These options are described in the Report Options table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
-
Name
-
Application
For step by step instructions on creating or editing a report, see Working With Reports.
Report Options
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Application | Select which application(s) to include in the report. |
Account Group Membership Totals Report
The Account Group Membership report lists all account groups for the selected application(s), and shows the count of account group members for each. This report can be filtered to include only account groups on a specific application or set of applications. If no applications are specified as filters, account groups for all applications are included on the report.
The detailed results of this report can be exported to a CSV or PDF file.
The Account Group Membership Report consists of the following sections:
-
Report Options. These options are described in the Report Options table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
-
Name
-
Application
-
Member Options
For step by step instructions on creating or editing a report, see Working With Reports.
Report Options
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Application | Select which application(s) to include in the report. |
Activity Reports: User Activity Detailed Report
The User Activity Detailed Report includes information on all activity on the applications monitored by IdentityIQ according to the criteria specified. This report is only applicable if activity monitoring has been configured in the system. See Activity Data Source Configuration for more information.
The detailed results of this report can be exported to a CSV or PDF file.
The User Activity Report consists of the following sections:
-
Additional Identity Properties. These options are described in the table below.
All reports use a set of standard properties for basic information such as naming and descriptions, and for setting controls, such as scoping and requiring sign-off.
You must enter the following before running this report:
- Name
For step by step instructions on creating or editing a report, see Working With Reports.
Additional Identity Properties
The following criteria determines what information is included in this report. You can use any combination of options to build a report.
Note
Selecting NO options from a list indicates that ALL options in the list are included in the report.
| Option | Description |
|---|---|
| Identities | The identity list to include in this report. If no identities are specified, activity for all identities is included. Click the arrow to the right of the suggestion field to display a list of all identities, or enter a few letters in the field to display a list of identities that start with that letter string. |
| Applications | Select the applications to include in the report. If no applications are specified, all applications configured to track activity are included. Click the arrow to the right of the suggestion field to display a list of all applications, or enter a few letters in the field to display a list of applications that start with that letter string. |
| Start and End Dates | The first and last date for which activity is reported. The report includes all application activity that occurred within the date range specified. You can enter the date manually, or click the [...] icon to select a date from the calendar. |
| Action | The actions to include in the report. Only activity of the action types selected are included in the report. Use the Ctrl and Shift keys to select multiple actions. |
| Result | The activity results to include in the report. Only activities that include the selected result, Success or Failure, are included. |
| Target | The specific target on an application to include in the report. Use the target filter to further narrow the result set for a search on a specific application. |