Previous Topic: sepurgdb Utility—Purge Database References to Undefined RecordsNext Topic: sereport Utility—Create HTML Reports on UNIX


sereport Utility Reports Configuration

The sereport utility provides HTML reports, accessible from a web browser, of database and Policy Model information. sereport operates on the current database used by the authorization engine.

You can set sereport options for the utility:

The reports you can generate, their description and corresponding configuration file settings or registry keys are shown in following table.

Report Number

Title and Description

Section\Subkey

Tokens\Entries

1

Administrative Privileges

Display specified administrative privileges of users.

admin_report

  • Hostname
  • Objects_Pattern
  • User_Mode

2

Login Limitation

Display login limitations of users.

disablelogins_report

  • Hostname
  • Objects_Pattern
  • Properties
  • User_Mode

3

Dormant Accounts

Display inactive accounts by date (days).

If an account does not have any login information, the create time is used to calculate dormant days.

dormant_report

  • Hostname
  • Objects_Pattern
  • Dormant_account
  • User_Mode

4

Last Login

Display last login date of users.

login_report

  • Hostname
  • Objects_Pattern
  • User_Mode

5

Password Change

Display list of users whose passwords must be changed within the specified number of days.

passwd_report

  • Days_to_change
  • Hostname
  • Objects_Pattern
  • User_Mode

6

Warning Mode

Display resources with objects in warning mode.

warning_report

  • Class_Name
  • Hostname
  • Objects_Pattern

7

Untrusted Programs

Display programs in untrusted mode.

untrust_report

  • Hostname
  • Objects_Pattern

8

Users' Privilege Access Rights

Show access privileges of users to specified resources.

accessor_report

  • Accessor
  • Class_Name
  • Hostname
  • Objects_Pattern

9

Compare users/groups in databases

Display users and groups that are defined in some but not all, databases.

grp_usr_compare

  • Hostname
  • Objects_Pattern

10

Compare Protected Resources

Display whether resources are defined in the specified databases.

res_compare

  • Class_Name
  • Hostname
  • Objects_Pattern

11

Compare Access Rights

Display the differences in resource restrictions between a Policy Model and a subscriber database.

acc_compare

  • Class_Name
  • Hostname
  • Objects_Pattern

12

Compare Users' Information

Display differences in user definitions between a Policy Model and a subscriber database.

usr_compare

  • Hostname
  • Objects_Pattern
  • Properties

13

Compare PMDB and Subscriber

Display the rules (as defined by the Class_Name and Object_pattern tokens) that exist on the PMDB, but do not exist on the subscriber database.

Note: If all of the rules on the PMDB exist on the subscriber database, then the databases are reported as IDENTICAL.

pmdb_compare

  • Class_Name
  • Hostname
  • Objects_Pattern
Accessor

Specifies the pattern (mask) for accessor selection. Use * to select all accessors.

Class_Name

Specifies a list of classes.

Days_to_change

Specifies the number of days left until the user is requested to change passwords.

Dormant_account

Specifies the period the account is to be considered dormant.

Hostname

Specifies a list of hosts from which the data is retrieved.

Objects_pattern

Specifies the pattern (mask) for object selection. Use * to select all objects.

Properties

Specifies attributes associated with the objects.

Report_place

(UNIX only) Specifies the full path location where the report is printed.

Note: On Windows, you define the location of the output using the -f option of the command.

User_Mode

Specifies a comma-separated list of user modes.

You can also find the following additional configuration settings in the colors section\key:

title

Specifies the color of the report's title.

class_title

Specifies color of the report's class_title.

background

(UNIX only) Specifies the color of the title report's background. The background and logo must be written in full path.

logo

Creates the logo. The background and logo must be written in full path.