SecurID Governance & Lifecycle recipes is a collection of items, to help you get the most out of your product deployment. For example, a useful report with the SQL to implement or a way to achieve some advanced rule processing.
Thischart/report/dashboard is supplied "as is" - any modification of thisitemis done at your own risk.
If you have issues applying thischart/report/dashboard, please comment below for help,DO NOT contact the RSA Support team.
If you would like more assistance with this chart/report/dashboard or for help in creating otherchart/report/dashboards, then RSA Professional Services (RSA PS) is available to help.
Please contact your RSA Account Manager or local RSA Sales Rep or reply below for further assistance.
This report includes information about AD groups, which may need investigation:
Never Reviewed Groups
Groups without Owners
First test this in your query tool (SQLDeveloper, Toad etc..)
(select*from( select 'Never Reviewed Groups'asStatus, vag.name as"Group Name", vag.cas3 as"Unique Name" from Avuser.V_ALL_GROUPS vAG leftjoin avuser.V_DATA_COLLECTORS vDC on vAG.ADC_ID = vDC.ID where LAST_REVIEWED_DATE isnull and DELETION_DATE isnull and lower(vDC.DESCRIPTION)like'%addashboard%' unionall selectdistinct 'Empty Groups'asStatus, vAG.name as"Group Name", vag.cas3 as"Unique Name" from Avuser.V_ALL_GROUPS vAG leftjoin (selectdistinct GROUP_ID from avuser.V_GRP_MEMBERSHIPS vGM ) vGM on vGM.GROUP_ID = vAG.id leftjoin avuser.V_DATA_COLLECTORS vDC on vAG.ADC_ID = vDC.ID where vGM.group_id isnull and vAG.DELETION_DATE isnull and lower(vDC.DESCRIPTION)like'%addashboard%' unionall select 'Groups Without Owner'asStatus, vAG.name as"Group Name", vag.cas3 as"Unique Name" from Avuser.V_ALL_GROUPS vAG leftjoin avuser.V_DATA_COLLECTORS vDC on vAG.ADC_ID = vDC.ID where OWNER_ID isnull and DELETION_DATE isnull and lower(vDC.DESCRIPTION)like'%addashboard%') groupbyStatus,"Group Name","Unique Name" orderbyStatusasc)
Example of the results:
Log into RSA IGL as a user who can create reports. In my example, im using AveksaAdmin
Go to "Reports" / "Tabular"
Select "+ Create Report" button
Under the "General Tab" add the following details:
Name: AD Group Summary
Title: AD Group Summary
Description: From RSA IGL Link Community. This report provides information about key AD Groups. Note: This chart requires the key word: "addashboard" to be added within the description of the Account Collector.
Under the "Query" Tab, copy the SQL from above
In the bottom bar, press the "Style" button. "Slate" is a good recommendation for reports
Press the "Preview" button, you should see some results, as per the example image below.
If you get an error at this stage, please test your SQL in a Query tool, like "SQL Developer" or "SQL Squirrel" to ensure it works first. If it still doesn't work, please share your SQL and a screen shot of the issue below.DO NOTcontact RSA Support
Under the "Columns" Tab, please use the configuration shown in the image below
Under the"Display Attributes"tab, please use the configuration shown in the image below
Nothing has been set on the "Filter", "Grouping & Sorting" or "Schedule and Email" tabs
Please "hit reply" and share your feedback - we would love to see an image of this working in your environment!