The following table describes the column values for the
policy management events in the AUDIT_EVENT table.
Table 1. Values for columns in the AUDIT_EVENT table
| Column Name |
Value |
itim_event_category |
Policy Management. |
entity_name |
Name of the policy. |
entity_dn |
Distinguished name of the policy. |
entity_type |
Types of policy entities: ProvisioningPolicy –
used to associate one or multiple groups of users with one or multiple
entitlements. The group of users is typically identified by organization
or organization role. The entitlement is a construct to define a set
of permissions, or privileges, on a managed provisioning resource.
HostSelectionPolicy –
(service selection policy) used in situations where there is an iinstance
of a provisioning resource on which the provisioning of an account
is to take place. It is determined dynamically based on account owners
attributes.
IdentityPolicy – Identity
policy specifies how identities, or user IDs, are generated when provisioning
one or more resources.
PasswordPolicy –
A password policy specifies a set of rules that all passwords for
one or more services must conform.
AccountTemplate –
An account template.
SeparationOfDutyPolicy –
A separation of duty policy.
RecertificationPolicy –
A recertification policy.
|
Action |
Types of actions: Add –
Add a policy
Modify – Modify a policy
Delete –
Delete a policy
Reconcile – Separation
of duty policy only (evaluation of a separation of duty policy)
Exempt –
Separation of duty policy only (exempt an existing violation)
Revoke –
Separation of duty policy only (revoke an approved exemption)
SaveAsDraft –
Provisioning policy only
CommitDraft - Provisioning
policy only
EnforceEntirePolicy – Provisioning
policy only
EnforcePolicyImport –
Import a policy
|