« 返回
Active Access IAM - Administration - User and User Grant Audits
Introduction
This article applies to Security Administrators. This article will describe the procedure for executing user audits and user grant audits.
Details
To enable best practices of periodic access review, the Active Access administration console enables administrators to conduct regular audits of the users in their organization. The User Audit will enable the administrator to review the entire list of users with access to Active Access and remove any who are no longer valid. The User Grant Audit will enable the administrator to review the list of users with grants for a particular service package and remove those grants from users who no longer require them.
User Audits
1. Click the Audits option under the Administration submenu.
2. The organization's audit history will be displayed on the screen
3. Click the audit icon on the upper left corner of the screen; select the User audit submenu
4. A list of active users will display
5. To suspend any active users, check the box to the left of the users to select the desired users, then click the Suspend link toward the top of the screen. Click on each page to review the entire list of users
6. To review suspended users click the drop-down at the top of the screen to toggle from active users to suspended users. Select the desired users then click the Delete link to remove the user
6. Click Next
7. Review the audit statement
8. Click Submit
9. Review the confirmation screen and click Confirm. An administrator of a parent company can select "include all divisions" to log audit completion for the entire hierarchy.
User Grant Audits
1. Click the Audits option under the Administration submenu.
2. The organization's audit history will be displayed on the screen
3. Click the audit icon on the upper left corner of the screen; select the User grant audit option
4. A list of service packages your organization has been granted will display. Select the desired package then click the Next button
5. Review the list of users with grants for the selected service package. To remove the service package from a user, select the desired user, then click the Remove button
6. Click the Next button
7. Review the audit statement, then click Submit
8. Review the confirmation statement then click the Confirm button. An administrator of a parent company can select "include all divisions" to log audit completion for the entire hierarchy.
