Contact us at 408.675.5020 or sales@identitymaestro.com

Home Page

Knowledge Base Search     Advanced

Enable and Configure the Audit Module

Article ID: 1685
Last updated: 18 Apr, 2018

Identity Maestro records activities that are performed into an audit log.  The audit log contains sensitive information so access must be restricted to Audit and Administration staff only. This article will cover the procedure to configure access to the Audit module and how to enable Identity Maestro to email activity reports.

Configure Audit Access Control

Access to the Audit module is controlled by creating Audit assignments for groups of trusted individuals who need access to the audit data.

  1. Log in as an Identity Maestro delegated administrator.

  2. Click on the Administration tab.

  3. Click the Audit button.

  4. The User Access Control step is used to grant access tp the AUdit module.

  5. Under User Access Control there are three options, You can add a new Audit assignment, remove groups, and create groups and containers for Audit assignments.

Create a Group for Audit Assignment

To create a group: 

  1. Click on Create and select Create Group. This will open the New Group dialogue.

  2. Select the desired Directory system from the System name drop-down.

  3. For the Parent Container click the browse icon, navigate to and select the parent OU container that will host the new group object.

  4. Provide a name and description of the new group and click Create.

  5. The new Group will not show on the User Access Control Interface.

  6. Add trusted members to the new group.

Create an Audit Assignment

To create an Audit assignment that will grant access to a group of trusted users:

  1. Click Add, which opens the Add Group or Container window.

  2. Select the connection directory. The dropdown will contain a list of all systems currently configured in the connection utility.

  3. For the Group or Contain option, click the browse button.

  4. Select a group of trusted members to provide access and click OK.

  5. Click the Allow access to Audit Viewer check box. This will reveal the access options for Audit behaviour.

  6. Select Allow audit file download to enable downloading of audit results by the users in the group.

  7. Select Allow data export to allow the users to fully export the Audit database to a CSV file.

  8. Select Allow activities reporting to enable the user to generate activity reports.

  9. Click Accept to add that assignment to the list.

Remove an Audit Assignment

To remove an audit assignment:

  1. Select the Audit assignment in the navigation panel.

  2. Click the Remove option and follow the prompts.

  3. Verify that the Audit assignment has been removed.

Step 2: Configure Activity Email Reporting

This procedure is used to configure Identity Maestro to send Audit Reporting emails.  These steps must be completed to ensure that the email Audit Activity Reports feature will work.

  1. In the Administration tab, click the Audit button.

  2. Select Reports from the left-hand side panel.

  3. Click on Activities Report Settings.

  4. This will reveal the Activity Report email options.

  5. Click on the Checkbox next to Enable Activities Report Email Option to enable report emails.

  6. The settings inside the Message box allow you to set the sending email account, change the sender name and customize the message body for the automated email that delivers the audit report.

  7. Click Save and Apply Settings.

  8. Once configured, the email feature should be tested to ensure that it will work for users who are assigned access to the Audit module.

This article was:   Helpful | Not helpful Report an issue


Article ID: 1685
Last updated: 18 Apr, 2018
Revision: 14
Views: 125
Comments: 0
print  Print email  Email to friend share  Share pool  Add to pool comment  Add comment
Prev     Next
Audit Log: Configure       Self Service: Configure