1.1 Components for Identity Reporting

Identity Reporting has the following components:

Component	Description
Identity Reporting	Browser-based application that generates reports by making calls to the Reporting Service.
Predefined Reports	Set of predefined report definitions you can use to generate reports. You can also import custom reports you define in a third-party tool. For details about the predefined reports, see NetIQ Identity Reporting: User’s Guide to Running Reports.
Report Packaging Tool	Facilitates the process of creating new reports. You can customize reports in iReport and use the Report Packaging Tool to package them for use within Identity Reporting. For more information, see Starting the Report Packaging Tool.
Reporting Service	Service that retrieves the data needed to generate reports from the Identity Information Warehouse, which contains all report management information (such as report definitions and schedules), database views, and configuration information required for reporting To produce reports, the Reporting Service invokes the JasperReports engine, which compiles and executes report definitions according to schedules that the Report Administrator defines.
Identity Information Warehouse	Repository for the following kinds of information: Report management information (such as report definitions, report schedules, and completed reports), database views used for reporting, and configuration information. This information is stored in tables within the idm_rpt_cfg schema. Identity data collected by the Managed System Data Collector, IDM Event-Driven Data Collector, and Application Collector. This data is stored in tables within the idm_rpt_data schema. Auditing data, which includes events that the Sentinel Log Management for IGA collects and are stored in the public schema within the warehouse The Identity Information Warehouse stores its data in the Security Information and Event Management (SIEM) database.
Managed System Gateway Driver	Driver that collects information from managed systems. To retrieve the managed system data, the driver queries the Identity Vault. The driver retrieves the following information: List of all managed systems List of all accounts for the managed systems Entitlement types, values, and assignments (groupings), and user account profiles for the managed systems
Security Service	Service that controls access to all other services within Identity Reporting. The Security Service includes these key components: A stand-alone authentication service that provides several functions through REST, including programmable authentication, token validation, token expiration notification, and attribute retrieval for an identity. An authentication module within the core service that performs internal functions such as performing authentication within the scope of the core service and retrieving additional identity attributes. An authorization module within the core service that controls what an authenticated user can do with reporting resources. This module defines access control policies for resources and determines the permissions based on attributes of the authenticated user, access control policy, and the resource being accessed.
Sentinel Log Management for Identity Governance and Administration	Captures log events associated with actions performed in several NetIQ products, including Identity Reporting, the identity applications, and the Identity Vault. These events are stored in the public schema within the warehouse. You have the option to create a Sentinel link. For information about setting up the Sentinel link, see Sentinel Link Overview Guide.
Identity Vault Data Sources	Repositories for identity information. Identity Reporting allows you to report on state information in the Identity Vault, such as which users have been provisioned with particular resources, or which users have been assigned to particular roles. You can report on current and past data from the Identity Vault. The Identity Vault Data Sources page allows you to specify which Identity Vaults you want to report on, and provide information about where Identity Reporting can find these vaults. You can include data sources for one or more Identity Vaults on the Identity Vault Data Sources page.
Managed Systems and Applications	A system in an enterprise that is connected to the Identity Vault with an Identity Manager driver. Identity Reporting allows you to report on state information about the managed systems. For example, the reports allow you to determine that a particular user known to the Identity Vault exists in Active Directory. Identity Reporting allows you to report on current and past data from managed systems.