Identity Governance provides authorized administrators an overview of real time adaptive statistics related to your governance system on the Overview page. The Overview page also provides links to the related feature areas such as catalog, risk, and policies. Authorized administrators view details and optionally edit the respective definitions and settings. For configuring detailed queries, see Section 28.1, Configuring Analytics and Role Mining Settings and Section 11.5, Analyzing Data with Insight Queries.
In order to view the widgets on the Overview page, requisite tasks must have been completed, and administrators must have the appropriate access authorization. For example, to view the Governance Risk Score widget, you must have previously configured and calculated the governance risk score. Users with Auditor authorization have read-only access to the Governance Risk Score widget. Global and Data Administrators can view the governance risk score and edit risk score configuration. For more information, see Section 20.3, Configuring Risk Scores and Section 20.5, Viewing Calculated Risk Scores.
Customer Administrators, Global Administrators, Data Administrators, and Auditors can view data collection statistics such as the number of identity and application sources and collection schedules in the Data Collection widget. They can also select the sources and schedules to configure application sources and collection schedule. For more information, see Section 7.0, Collecting Applications and Application Data and Section 9.0, Creating and Monitoring Scheduled Collections.
In addition to collection statistics, administrators can also view the total number of groups, identities, applications, accounts, and permissions in the Data Summary widget. The Data Summary widget displays only the number of objects that are visible in the catalog. This data can be viewed as a bar or pie chart and authorized users can select a parameter to view the respective catalog details.
NOTE:View the Data Sources > Activity page for actual number of collected or published data objects that include objects that are not visible in the catalog. You can also use this page to compare collections or publications from two different times.
Administrators such as the Separation of Duties Administrator, Review Administrator, and Data Administrator can view respective SoD, Certification, and Data policy violation statistics. In order to view the policy widgets, administrators must have defined review definitions and policies. For more information, see Section 18.3, Creating and Editing Separation of Duties Policies, Section 27.2, Creating and Editing Certification Policies, and Creating and Editing Data Policies.
To understand how entitlement assignments conform to business policies, Customer, Global, Data, and Business Roles Administrators can view the Role Leverage widget on the Overview page. It includes a graphical overview of effectiveness of roles over a period of time, entitlements assignments using roles versus entitlements assigned directly, and ratio of indirect role-based entitlements versus total entitlement assignments in percentage.
To change the default time range, log in as one of the authorized administrators, select the calendar icon, and select dates. To refresh the graphs, collect metrics for business role mining after publishing new business roles. Based on these metrics, you can then lower risk by using role mining to create more roles. For more information, see Defining Business Roles.
On the Overview page, administrators can see an account statistics summary for their system in the Account Statistics widget. To see data, administrators must collect and publish data sources and then collect metrics on demand or wait for 24 hours, the default metrics collection interval.
NOTE:To keep statistics up to date, metrics must be collected after every publication.
Identity Governance displays available metrics on the summary panel followed by a chart for each metric per risk levels.
To change the default settings:
Log in as an authorized administrator such as a Customer, Global, Data, Review, or SoD Administrator.
Select the calendar icon to change the time range for account statistics.
Select the change option icon to show or hide risk level series.
To drill down to see many more specific charts relating to your accounts:
On the Overview page in the Account Statistics widget, select View statistics details.
or
Select a data point on any chart to drill down to statistics details for that chart.
Select the calendar icon to change the date for the statistics.
Select a chart or table from the drop down menu to change to a different set of statistics. You can modify or delete these.
Drag and drop available metrics from the header to columns or rows.
(Optional) To create a customized chart or table:
Start with a chart or table that contains the basic elements you want.
Select the type of table, such as heatmap or line chart.
Select the type of statistics, such as count or average.
(Optional) Select additional options, if needed. Some selections add more options to customize. For example, for risk by application count bar chart you can customize risk levels display and add and customize results display by application.
Customize the row and column headings.
Specify a name for the customized view and select Save.