User Level Access Risk Analysis

Context

You can create a report displaying the user-level access risk analysis for your organization.

Procedure

Choose Access Management Access Risk Analysis User Level.

The Risk Analysis: User Level screen appears.
Specify the analysis criteria.
1. Choose the object type using the first dropdown list, which contains the options:
  - System
  - Custom Group
    
    Note
    
    You can use custom user groups to perform risk analysis for the group instead of separately for each user. For example, you create Group_A , and then add User_01 through User_10. You can then run risk analysis on Group_A. For more information, see Creating a Custom User Group.
  - Include Users
  - Include Role Assignment
  - Org Level
  - Org Rule
  - User ID
  - Org Unit
  - Org Value
  - Risk by Process
  - Access Risk ID
  - Risk Level
  - Rule Set
  - User
    
    Note
    
    On an ad hoc basis, you can run a risk analysis for a filtered list of users based on their SU01 attributes. To do this, select Multiple Selections in the middle column. Then select Add Selection. Then select Search SU01 to identify the attributes you want to analyze.
  - User Group
  - User Type
  - Validity Date
2. Choose the operator using the second dropdown list, from the following:
  - is
  - is not
  - starts with
  - contains
  - is between
  - multiple selections
3. In the Value field, enter or select the value in the third field.
4. Optionally, add a line to the analysis criteria by choosing the plus (+) pushbutton and specifying the fields. Or you can remove a line by selecting the minus (-) pushbutton.
Specify the report options.
1. In the Format section, select the type and view.
  Choose from the following types:
  - Summary
  - Detail
  - Management View
  - Executive View
  Choose from the following views:
  - Remediation View
    
    Note
    
    This view allows you to start remediation actions directly from the report. For more information, see Remediation View.
  - Technical View
  - Business View
In the Type section, select the report type:
- Access Risk Analysis – Select Action Level, Permission Level, Critical Action, Critical Permission, and Critical Role/Profile.
- Access Risk Assessment
- Mitigating Analysis – Choose either Mitigating Controls or Invalid Mitigating Controls.
In the Additional Criteria section, select additional criteria. You can, for example, include mitigated risks.
Optionally, save the analysis criteria as a variant by typing a name in the Save Variant as field and choosing Save.
Choose Run in Foreground or Run in Background.

If you choose Run in Background, the Background Scheduler dialog appears. Enter the details and choose OK. The job number appears on the User Level screen.

To view the job, navigate to Access Management Scheduling Background Jobs.

If you choose Run in Foreground, confirm that you want to run the analysis immediately by choosing OK. The analysis results appear in a new window.

Next Steps

Access Risk Analysis

User Level Simulation

Creating a Custom User Group

Remediation View