You can preview results of the IDA policies to understand the policy violations that will be generated as a result of a scan. When you preview a policy, the policy violations are displayed, but the violations are not assigned to the remediators.
To preview the results of an IDA policy:
In Identity Self Service, click the Compliance tab.
Click the Identity Audit box, and select Policies. The Policies page is displayed.
Search for the policy that you want to modify. See "Searching Policies" for information about searching policies.
Select the policy that you want to preview.
From the Actions menu, select Preview. Alternatively, click Preview on the toolbar. The Base Selection page is displayed.
Select a set of users that you want to scan by selecting any of the following options:
All Organizations: To specify that all organizations will be scanned.
Selected Organizations: To specify one or more organizations that will be scanned. After selecting this option, click Add Organizations, search and select one or more organizations, and then click Select.
All Users: To specify that all users will be scanned.
User Criteria: To specify criteria parameters so that users that match the criteria will be scanned. To specify the user criteria:
Under the Criteria Parameters section, select any one of the following:
All: To specify that all the parameters must match.
Any: To specify that any one parameter must match.
Enter values in the Manager and Organizations fields.
Optionally, you can click Advanced to include more attributes in the criteria.
Click Update and Preview Results. The selected criteria is added to the Criteria String section.
Selected Users: To specify one or more users that will be scanned. After selecting this option, click Add Users, search and select one or more users, and then click Select.
Click Submit. The scan is submitted. When the scan is complete, the policy violations detected by the scan will be displayed.
To view the policy violations detected by the scan, select the policy in the Policies page, and click View Scans. Alternatively, from the Actions menu, select View Scans.
The Scans page is displayed with the results of the scan. The scan name, status of the scan, start time, end time, the number of users scanned, and number of violations are displayed in a table.
Click the scan name. Alternatively, click Open. The Policy Violations page is displayed with a list of all the policy violations.
The remediator will get the policy violations in the Policy Violations of the Self Service after the scan is run.
You can click each policy name to view the policy violation details in the Violation details page. This page has the following sections:
Violation Details: Displays the details of the policy violation, such as the policy attributes, status, detection count, and the user name for which the violation is generated.
Access Details: Displays the cause of the violation, the rules that have been violated, the status and attributes of the violation, and comments, if any.