Segregation of duties reports

Approved exceptions to rules violations

Purpose: Report on users with approved exceptions to SoD rules violations.

Executable: sodexceptions

Table 1. Approved exceptions to rules violations report search criteria

Criteria	Description
Report type	Select the type of report: List of segregation of duties rule exceptions - The regular report mode for the segregation of duties rule exceptions. Detailed list of segregation of duties rule exceptions - The detailed report mode to list the segregation of duties rule exceptions. Summary of segregation of duties rule exceptions - The report output contains the rules with exceptions.
Segregation of duties rules	Enter one or more SoD rules to include in the report. All SoD rules are included by default.
User ID	Type a user’s profile ID to only list exceptions that apply to that user. Alternatively, you can search for one or more profile IDs.
Summarize report	Select this checkbox to summarize the report details. In this mode, the report output contains approved exceptions for each user. Statistics will show the SoD rule that the user is has been approved for.

Purpose: Lists member entitlements and authorizers for exceptions to SoD policy.

Executable: sodrules

Table 2. Segregation of duties rules report search criteria

Criteria	Description
Segregation of duties rules	Select one or more SoD rules to include in the report. All SoD rules are included by default.
Template accounts	Select one or more template accounts. Only SoD rules that contain the specified template accounts are included in the report.
Managed groups	Type the long ID of one or more managed groups for which you want to run the report. Only SoD rules that contain the specified groups are included in the report. Alternatively, you can search for one or more target systems.
Roles	Select one or more roles. Only SoD rules that contain the specified roles are included in the report.
Show authorizer	Select this checkbox if you want generate a report listing the authorizers for each matching SoD rule.
Show deprecated	Select this checkbox to include only deprecated SoD rules in the report.

Purpose: Users in violation of SoD rules policy, and the rules that they have violated.

Executable : sodviolator

Table 3. Segregation of duties rules violations report search criteria

Criteria	Description
Report type	Select the type of report: List of segregation of duties policy violators - The regular report mode for the segregation of duties rules violation. List of segregation of duties policy violators with insufficient approved exceptions - Displays the violators who either have insufficient or no approved exceptions. List of segregation of duties policy violators with no approved exceptions - Displays the violators who have no approved exceptions. Detailed list of segregation of duties policy violators - The detailed report mode to list the segregation of duties rules violations. Summary of segregation of duties policy violations - The report output contains the rules in violation for each user. Statistics will show each SoD rule that the user is in violation of.
Segregation of duties rules	Select one or more SoD rules to include in the report. All SoD rules are included by default.
User ID	Type a user’s profile ID to only list violations that apply to that user. Alternatively, you can search for one or more profile IDs.
Show deprecated	Select this checkbox to include deprecated SoD rules in the report.

In this section: