Privileged ID management
It visualizes privileges, privileged IDs and privileged users
A privileged ID (administrator, root, etc.) is a shared ID with full control or a highly privileged ID. iDoperation captures privileged IDs from the target and visualizes privileged IDs in the organization. The administrator can visualize privileged IDs, privileged users and privileged access usage rights by registering a privileged user that uses a privileged ID and setting permissions.
Account management
It can integrate and manage all targeted privileged IDs
You can manage all targeted accounts from iDoperation Web Console. Easily start your account management by automatically capturing (synchronizing) all your accounts from your target. Account operations can be managed in the same way for different types of targets.
Group management
You can manage targets by grouping them. You can register OS, AD, databases, virtualization software and cloud services as targets. You can output a list of targets in a report and use it for checking target systems.
Account operation
You can register, change, or delete accounts. Account operations are automatically synchronized to the target. Individual registration from the screen and batch registration using CSV are possible.
Syncing accounts
You can create a list by capturing all accounts from a target and easily check the latest account list.
Account list report
Lists accounts and outputs a report. You can use it for checking the last log on date and time and list privileged IDs.
User management
It can centralize management of user information
Centralized management of privileged users, applicants, approvers of privileged access and administrators of iDoperation is possible. Depending on the scope of the user's privilege, detailed privilege management is available.
Group management
You can manage privileged users and applicants and approvers grouped according to their organizations and roles.
User operation
You can register, change, or delete users individually from the display and collectively using CSV.
User privileges
You can manage privilege settings (available functions: applications, log inspection, etc.) and workflow settings (targets that can be requested) for the group to which the user belongs.
User list report
iDoperation lists privileged users, applicants, approvers, and administrators, and outputs reports of them. You can use it for checking privileged users.
Privilege management
It lets you see who can use which privileged ID
iDoperation manages privileged access by granting or revoking use settings for the account to users based on the application status in the workflow. By reviewing the user's account use settings, you can easily see who is ready to use which privileged ID.
Account use settings
iDoperation manages privileges granted to privileged users (combinations of targets, accounts, and access methods) based on the application status of the workflow. For permanent privileged IDs, the administrator can grant permissions directly without using a workflow. Account use settings can be registered individually from the screen or in bulk using CSV.
Account use setting list report
iDoperation lists and reports privileges granted to privileged users (account use settings). You can check who is ready to use which privileged ID for which targets.
It automates password changes and account-matching inspection
Internal control audits require periodic password changes in accordance with the
rules as well as implementation and recording of account inspection. iDoperation
automates these and other administrator tasks.
Administrators can understand management status simply by checking the outcomes
of password changes or account inspection.
Batch password change
It automates privileged access password changes
Internal control audits require periodic password changes in accordance with
rules and records.
iDoperation automatically runs password changes periodically and records the
outcome according to predetermined password policies and schedules.
Schedule
You can automate regular password changes according to your rules, e.g. changing the password every three months. Administrators can manage the status of a schedule by simply checking its results.
Batch Change Password
You can change the passwords for privileged IDs in batches according to your schedule. Random passwords are generated automatically according to your account policies.
Account inspection
It automates account-matching inspection
iDoperation automatically performs matching of the ID management ledger against real accounts registered in the target, and the result is output as a report (PDF/Excel). The administrator can see all accounts in a list simply by reviewing the summary of the account inspection report.
Schedule
You can automate regular (e.g. daily, weekly, or monthly) account-matching inspections according to rules.
Account inspection
Accounts managed by iDoperation are matched against real accounts registered in the target, and the result is output as a report (PDF/Excel). You can easily find accounts that are incorrectly registered/deleted on the target side.
Report
It lists privileges, privileged access and privileged users in reports
Reports related to ID management can be exported in PDF, Excel and CSV. You can regularly get up-to-date account information, user information and privilege information (account use settings) to understand the most recent registration status. iDoperation's ID management report also supports the English language.
| Report name | Content and application |
|---|---|
|
A list of users (privileged users, applicants, approvers and
administrators) registered to iDoperation. You can use it for checking privileged users. |
|
|
A list of targets (management target systems) that are managed by iDoperation. You can use it for checking target systems. |
|
| A list of accounts (management target system accounts) that are managed by iDoperation. You can check the account setting information, last logon date and time, etc. You can use it for checking privileged access. | |
| A list of privileges (account use settings) that have been granted to iDoperation users. You can check who is ready to use which privileged access for which targets. | |
| A list of matching inspection outcomes for accounts managed on iDoperation and accounts registered on the target. You can easily find accounts that have been incorrectly registered or deleted on the target side. |