Report Types System and User are not available to Report Administrators in RSA Identity Governance and Lifecycle
Originally Published: 2019-08-21
Article Number
Applies To
RSA Version/Condition: 7.x
Issue
When granting the end-users the 'Report Administrator' app-role, that user has only 12 types out of 14 types available to create reports. In this case, ‘System’ and ‘User’ Types for reports are not available users with with 'Report Administrator' privilege. They are available ONLY to 'AveksaAdmin' or users with 'System Administrator' privilege.
Report Types available to System Administrator
Report Types available to 'Report Administrator': As you can see below, 'System' and 'User' types are not available to users with 'Report Administrator' privilege.
HELP on these report types is:
- User — Reports for the number of users in the system, terminated users, user membership in groups, and user data cleanup activities.
- System — Reports for system processes (collections, polices, et al.) generated by the system.
Is it possible to make above two report types available to users without having to grant the 'System Administrator' app-role?
Cause
Engineering ticket has been created for defining the role and scope of "Report Administrator" and if needs to add additional Privileges.
Resolution
Workaround
1) You will be able to create the reports as System Administrator, and assign privileges such as of 'Report Definition : Run'.
2) Secondly, Report Admins can create custom reports and obtain the same query that is used in 'User' and 'System' reports from System Admins and then they will be able to run those reports, add users to run those reports and export the results.
