Explore Access Profile in an Enterprise
As an Enterprise-wide Access Administrator, you can use the Who has Access to What functionality of Oracle Access Governance to get 360-degree visibility of access maps across an enterprise. Here, you get a complete and comprehensive understanding of identity access profiles across an enterprise. Managers can check accesses for their direct reports.
View Access Profile across Enterprise
As an Enterprise-wide Access Administrator, get visibility into accesses across an enterprise using the Enterprise-wide Browser functionality. There are multiple perspective views available to browse through the access profile information. You can browse to view identity details, their accesses including roles, resources, permissions, accounts, or policies. Alternatively, you can choose access control entities to browse access information.
Search and Apply Filters
You can retrieve data of your choice by performing keyword search or applying filters. Within Enterprise-wide Browser page, you can apply suggested filters to view focused information, or add an advanced filter to get some specific information.
Manage Access Profile Layout
You can customize the default access profile layout by including (show) or excluding (hide) the data columns, sorting individual column, or reordering the data columns to change the view sequence. You can even download the CSV file for the first 500 records for offline analysis.
Hide or Show Columns in the Access Profile Layout
- In the Enterprise-wide Browser page, select the
Edit list setting icon.
- To add columns in your layout, from the Hide section, select one or more fields. The selected columns will be part of the Show section.
- To remove columns from your layout, from the Show section clear one or more fields. These unselected columns will be part of the Hide section and will be hidden from the access profile view layout.
- Click Apply.
- To restore your default layout, select the Restore defaults link.
Reorder Columns in the Access Profile Layout
- In the Enterprise-wide Browser page, select the
Edit list setting icon.
- To reorder and rearrange the columns, select and drag the
drag-handle icon and drop it at the relevant position.
- Click Apply.
Download Reports
- In the Enterprise-wide Browser page, select the
CSV icon to download the first 500 records available in the access profile view.
- To download the PDF screenshot of the access details visible to you in the application:
- In the Enterprise-wide Browser page, for a specific access record, select the View details link.
- From the Actions menu, select Download screenshot PDF.
Note:
If you're having trouble viewing PDFs downloaded using Mozilla Firefox, update the browser advanced font settings, and select the Allow pages to choose your own font, instead of your selections above check box.
Generate User-Created Access Reviews
Enterprise-wide Access Administrator or Oracle Access Governance Administrator can generate identity and access control access reviews while exploring the access profile insights within Enterprise-wide Browser. You can generate access reviews for identities, policies, and identity collections. For an identity, apart from regular identity access reviews, you can request specific access review on permissions, accounts, roles, identity collections, and policies.
Identity Access Reviews
- Log on to Oracle Access Governance as an Enterprise-wide Access Administrator.
- From the
navigation menu, select
- In the Enterprise-wide Browser page, select Identities as the perspective view in the Select what you want to browse list.
- Select the View details link corresponding to the identity for which you want to generate the review.
- To create:
- All the possible identity access reviews for that identity, from the Actions menu, select Create access review.
- Specific identity access review for the selected permission, from the
More Actions icon, select Create access review.
- Select the reviewer in the Who do you want to do the review field.
- Enter justification for this access review in the Why are you wanting it reviewed? box.
- Click Create.
Access Control Access Reviews
- Log on to Oracle Access Governance as an Enterprise-wide Access Administrator.
- From the
navigation menu, select
- In the Enterprise-wide Browser page, depending on the access control type, select either Identity Collections or Policies as the perspective view in the Select what you want to browse list.
- Select the View details link corresponding to the access control that you want to review.
- In the details page, from the Actions menu, select Create access review.
- Select the reviewer in the Who do you want to do the review field. By default, the review is assigned to the owner of the selected access control.
- Enter justification for this access review in the Why are you wanting it reviewed? box.
- Click Create.
Reviewers can view these review tasks on the My Access Reviews page.
My Directs' Access - View Access Profile Information for Team
Managers can view comprehensive identity details for their direct reports. Managers can view what resources and accounts are assigned to each one, assigned oles at what permission level and with what groups they are associated.
Note:
This feature is not available if you have integrated only OCI IAM, as your target system, with Oracle Access Governance. Here, My Directs' Access will provide the access information only for the direct reports, and not skip-level reports.For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc.
Access to Oracle Support
Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs if you are hearing impaired.