Viewing Policy Violations

You can use the Remediations page to view details about violations before taking action on them.

Depending on your capabilities or place in the Identity Manager capabilities hierarchy, you may be able to view and take action on violations for other remediators.

The following topics are related to viewing violations:

• Viewing Pending Requests

• Viewing Completed Requests

• Updating the Table

Viewing Pending Requests

Pending requests assigned to you are, by default, displayed in the Remediation table.

You can use the List Remediations for option to view pending remediation requests for a different remediator:

• Select My Direct Reports to view pending requests for users in your organization who report directly to you.

• Select Search Users to enter or locate one or more users whose pending requests you want to view. Enter a user ID, and then click Apply to view pending requests for that user. Alternatively, click ... (More) to search for a user. After locating and selecting a user, click Dismiss to close the Search area.

The resulting table provides the following information about each request:

• Remediator. Name of the assigned remediator. This column displays only when you view remediation requests for other remediators.

• User. User for whom the request is made.

• Audit Policy/Request. Action requested of the remediator.

• Audit Rule/Description. Remediation comments for the request.

• Violation State. Current state of the violation.

• Severity. Severity assigned to the request (None, Low, Medium, High, or Critical).

• Priority. Priority assigned to the request (None, Low, Medium, High, or Urgent).

• Date of Request: Date and time the remediation request was issued.

Each user can choose a custom form that displays remediation data relevant to that particular remediator. To assign a custom form, select the Compliance tab on the user form.

Viewing Completed Requests

To view your completed remediation requests, click the My Work Items tab, and then click the History tab. A list of previously remediated work items displays.

The resulting table (which is generated by an AuditLog report) provides the following information about each remediation request:

• Timestamp. Date and time the request was remediated

• Subject. Name of the remediator who processed the request

• Action. Whether the remediator mitigated or remediated the request

• Type. ComplianceViolation or User Entitlement

• Object Name. Name of the audit policy that was violated

• Resource. Provides the remediator’s account ID (or may indicate N/A)

• ID. Account ID related to the policy violation

• Result. Always indicates Success

Clicking a timestamp in the table opens an Audit Events Details page.

The Audit Events Details page provides information about the completed request, including information about the remediation or mitigation, event parameters (if applicable), and auditable attributes.

Updating the Table

To update the information provided in the Remediations table, click Refresh. The Remediation page updates the table with any new remediation requests.