- Detective mode: In a detective mode, the entire identity warehouse of users can be monitored for anomalies or toxic combinations of user access rights.
- Preventive mode: In preventative mode, any access that is requested via the access catalog in real-time can be automatically detected as an Identity Audit policy violation, and preventative action can be taken.
Enabling Identity Audit in OIM R2 PS3
IDA Settings
Creating Identity Rules
Creating SoD Policies
Creating Scan Definition
Running and Viewing Policy Violations
Policy Violation Details
IDA Maintenance
Identity Audit Scan Cleanup Job + Identity Audit Maintenance Job
Records are purged from the following the tables
– IDA_SCAN_RUN_POLICIES
– IDA_SCAN_RUN_USERS
Policy Violation Reports
IDA Maintenance
Identity Audit Scan Cleanup Job + Identity Audit Maintenance Job
Records are purged from the following the tables
– IDA_SCAN_RUN_POLICIES
– IDA_SCAN_RUN_USERS
Policy Violation Reports
No comments:
Post a Comment