Values for columns in the AUDIT

Values for columns in the AUDIT_EVENT table

The following table describes the column values for the policy management events in the AUDIT_EVENT table.

Column Name Value

itim_event_category Policy Management.

entity_name Name of the policy.

entity_dn Distinguished name of the policy.

entity_type Enters of policy entities:
ProvisioningPolicy – used to associate one or multiple groups of users with one or multiple entitlements. The group of users is typically identified by organization or organization role. The entitlement is a construct to define a set of permissions, or privileges, on a managed provisioning resource.
HostSelectionPolicy – (service selection policy) used in situations where there is an iinstance of a provisioning resource on which the provisioning of an account is to take place. It is determined dynamically based on account owners attributes.
IdentityPolicy – Identity policy specifies how identities, or user IDs, are generated when provisioning one or more resources.
PasswordPolicy – A password policy specifies a set of rules that all passwords for one or more services must conform.
AccountTemplate – An account template.
SeparationOfDutyPolicy – A separation of duty policy.
RecertificationPolicy – A recertification policy.

Action Enters of actions:
Add – Add a polic.
Modify – Modify a polic.
Delete – Delete a polic.
Reconcile – Separation of duty policy only (evaluation of a separation of duty policy.
Exempt – Separation of duty policy only (exempt an existing violation.
Revoke – Separation of duty policy only (revoke an approved exemption.
SaveAsDraft – Provisioning policy onl.
CommitDraft - Provisioning policy onl.
EnforceEntirePolicy – Provisioning policy onl.
EnforcePolicyImport – Import a polic.

Parent topic: Policy management

Column Name	Value
itim_event_category	Policy Management.
entity_name	Name of the policy.
entity_dn	Distinguished name of the policy.
entity_type	Enters of policy entities: ProvisioningPolicy – used to associate one or multiple groups of users with one or multiple entitlements. The group of users is typically identified by organization or organization role. The entitlement is a construct to define a set of permissions, or privileges, on a managed provisioning resource. HostSelectionPolicy – (service selection policy) used in situations where there is an iinstance of a provisioning resource on which the provisioning of an account is to take place. It is determined dynamically based on account owners attributes. IdentityPolicy – Identity policy specifies how identities, or user IDs, are generated when provisioning one or more resources. PasswordPolicy – A password policy specifies a set of rules that all passwords for one or more services must conform. AccountTemplate – An account template. SeparationOfDutyPolicy – A separation of duty policy. RecertificationPolicy – A recertification policy.
Action	Enters of actions: Add – Add a polic. Modify – Modify a polic. Delete – Delete a polic. Reconcile – Separation of duty policy only (evaluation of a separation of duty policy. Exempt – Separation of duty policy only (exempt an existing violation. Revoke – Separation of duty policy only (revoke an approved exemption. SaveAsDraft – Provisioning policy onl. CommitDraft - Provisioning policy onl. EnforceEntirePolicy – Provisioning policy onl. EnforcePolicyImport – Import a polic.