Identity Reporting generates reports that show critical business information about various aspects of your Identity Manager configuration, including information collected from Identity Vaults and managed systems such as Active Directory or SAP. Identity Reporting provides a set of predefined report definitions you can use to generate reports. In addition, it gives you the option to import custom reports defined in a third-party tool. The user interface for Identity Reporting makes it easy to schedule reports to run at off-peak times to optimize performance.
NOTE:For details about the predefined reports, see NetIQ Identity Reporting: User’s Guide to Running Reports.
The core of Identity Reporting is the Identity Information Warehouse, an intelligent repository of information about the actual state and the desired state of the Identity Vault and the managed systems within an organization. By querying the warehouse, you can retrieve all the information you need to ensure that your organization is in full compliance with relevant business laws and regulations. The warehouse gives you a 360-degree view of your business entitlements, providing the knowledge you need to see the past and present state of authorizations and permissions granted to identities in your organization. With this knowledge, you can answer even the most sophisticated Governance Risk and Compliance (GRC) queries.
The Identity Information Warehouse uses the following drivers to collect data about an organization:
Data Collection Service Driver
Managed System Gateway Driver
The Data Collection Service Driver uses a push model to collect data about changes made to user accounts, roles, resources, group memberships, and other objects in the vault. The Managed System Gateway Driver can pull information from any managed system that has been enabled for data collection in Identity Manager, as long as it supports entitlements. In addition to maintaining data about identities that are under the full control of the Identity Manager engine, the Identity Information Warehouse collects data about identities that the engine does not manage.
Identity Reporting provides several open integration points. For example, to collect data about third-party applications that are not connected to Identity Manager, you can implement a custom REST endpoint to collect data from these applications. In addition, you can customize the data that the Identity Vault sends to . To do this, you add a filter to the Data Collection Service Driver to add custom objects or attributes, causing these additional pieces of information to be stored in the warehouse. When this data is available, you can write custom reports to see the information.
NOTE:The Data Collection Services page can be accessed directly from the Identity Application user interface from this release onwards. Data Collection Services (DCS) will not be a part of the Reporting (IDMRPT) page from this release onwards.