Documentation forAccess Rights Manager

Apply an ARM account to a specific security role or data owner

To include data security officers and auditors in your security related processes, you can: 

  • Grant the user read only access to ARM.
  • Define which reports are relevant.ARM will send them to the user automatically in the desired frequency.

Create a simple read-only account in ARM

You can include security officers in the access rights management process by granting them read-only access in the ARM configuration application. After they receive read-only access, they can generate their own reports.

  1. Start the Configuration application.

  2. Click User Management.

  3. In the User and Role Management window, click the link at the top of the window to switch to User Management.

  4. In the Search field, enter a search term and then click to locate the targeted account.

  5. Drag the targeted account to the right column.

  6. In the role column, click the Auditor drop-down menu and select Auditor.

    The new settings are active.

Schedule reports

You can include security personnel in the access rights management process by assigning reports to the appropriate security officers. ARM sends the reports in the desired frequency. The process is identical for all reports.

SolarWinds recommends sending a selection of management reports to the role responsible for security. The reports are easy to read and only contain the necessary information.

Management reports

The following table lists the ARM management reports.

Report type Report
Active Directory

Employees of a manager

Display group memberships and user account details

File Server

Who has access where?

Where do employees of a manager have access to?

Where do users and groups have access?

Exchange

Who has access to what?

Identifying mailbox permissions

SharePoint

Who has access where?

Where do users and groups have access?

Schedule a management report

  1. Log in to the Access Rights Manager application.

  2. Click Start in the toolbar.

  3. Under Documentation and Reporting, click a management report title.

  4. Maximize Settings.

  5. Locate Report execution mode and click started manually.

  6. Set the configuration settings for the report.

    1. Under Time Schedule, select the frequency for this report.

    2. Under Repeat mode, select Generate reports periodically.

    3. Click Apply.

  7. In the Settings menu, locate the Send email field and click Deactivated.

  8. Configure the email settings.

    1. Select the Send email, when report is created checkbox.

    2. Select the Add report as email attachment checkbox.

    3. Click the Notification emails sent to link and determine who should receive the email. You can enter more than one email recipient.

    4. Click Apply.

See Manage ARM Users for more information.