Search

Skip to end of metadata
Go to start of metadata

Account reports cover everything except resource access. Common elements are described on the data explorer page.

Any report you generate can be saved or scheduled.

Totals

The account totals report is about how many accounts you have (and had) in various states 

Scope

This organisation

All organisations

Granularity

Daily

Monthly

Breakdowns

By type - how many of which type of account did you have over the time period.

By status - how many accounts were in which state over the time period:

By activity - how many accounts did things such as get created, get deleted or various modifications over the time period.

By reportable attribute - any attributes you have marked as reportable in your schema.




Authentications

The authentications report is about accounts that fail authentication and why. Successful authentications are included for comparison. 

Scope

This organisation

All organisations

Granularity

Hourly

Daily

Monthly

Breakdowns

This report does not have any breakdowns because a failed authentication does not supply any data beyond the failure reason - the usage report (below) breaks down the successful authentications.

Unique

The dotted line on the graph represents the number of unique users - i.e. counting only one authentication per user in the granule. This shows you how many accounts were responsible for each of the totals in that granule -  adding up unique users won't work as the same user could appear in several and you'll end up with a number bigger than your total number of accounts - use a larger granule instead. The number of unique users on any given day (e.g daily granularity) is also very unlikely to match the number of unique users at monthly granularity as those who sign in on Monday might not on Tuesday. 

Unique also appears in the data table (without totals of-course).

The difference between locked, banned, and suspended

Locked is a temporary lockout when the wrong password is used too many times in a short period of time. Banned is when the system has detected what appears to be misuse and suspended is when you have set a rule on your local connector.




Usage

The account usage report is about the accounts that were successfully authenticated into OpenAthens. 

Scope

This organisation

All organisations

Granularity

Hourly

Daily

Monthly

Breakdowns

By group - the user groups assigned to users who authenticated. Only available when the scope is this organisation.

By permission set - the permission sets assigned to users who authenticated. Only available when the scope is this organisation.

By location - the countries that the users were in when they authenticated.

By reportable attribute - any attributes you have marked as reportable in your schema.




Why aren't permission set and group breakdowns available over all organisations?

The simple reason is that both of them are specific to the sub-organisation rather than being global, and can be renamed, deleted or expanded by sub-administrators. For things you want to report on over all your organisations you should use a custom attribute - the 'choice' type is a popular way to restrict things to a set of possibilities that are defined by the domain administrator. 

That said, the summary for all organisations option under save to my computer should give you what you're looking for. 

Location data

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com  

  • No labels