RapidIdentity Portal Workflow
Column | Value |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
The Expiration Extended event is logged whenever the expiration for a granted Entitlement is extended by the Entitlement owner.
Column | Value |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.accountmgmt |
action_id | net.idauto.audit.arms.workflow.action.extendExpiration |
target_system | WORKFLOW_DB |
target_id | The ID of the recipient |
target | The ID of the recipient |
Name | Value/Description |
|---|---|
numDays | The number of days which the expiration was extended |
newExpirationTimestamp | The new ISO8601 date/time for the entitlement expiration (if a time component is involved) |
newExpirationDate | The new ISO8601 date for the entitlement expiration (if no time component is involved) |
The Workflow Started event is logged whenever a workflow is started.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.start |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who requested the workflow | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The DN of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the workflow | false |
workflowId | The ID of the workflow being executed | false |
workflowDN | The DN of the workflow being executed | false |
workflowName | The name of the workflow being executed | false |
requestType | The type of the request: GRANT or REVOKE | false |
comments | The comments associated with the request if any | false |
associatedRoleId | If this request was automatically made as a result of a Role being granted or revoked, this field will contain the ID of that Role | false |
associatedRoleDN | If this request was automatically made as a result of a Role being granted or revoked, this field will contain the DN of that Role | false |
associatedRoleName | If this request was automatically made as a result of a Role being granted or revoked, this field will contain the name of that Role | false |
formId | The ID of the request form (if available) | false |
formName | The name of the request form (if available) | false |
formData | The request form data in JSON format (if available) | false |
The Workflow Forwarded event is logged whenever a workflow is forwarded (i.e. Approved, Denied, or ReAssigned).
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.forward |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the approver | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The DN of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the request | false |
workflowId | The ID of the workflow being executed | false |
workflowDN | The DN of the workflow being executed | false |
workflowName | The name of the workflow being executed | false |
requestType | The type of the request: GRANT or REVOKE | false |
comments | The comments associated with the request if any | false |
forwardRequestType | The type of the forward request: APPROVE, DENY, or REASSIGN | false |
taskId | The unique ID of the workflow | false |
addresseeId | The ID of the addressee of the task. In the case of a re-assign, this will have the ID of the new addressee. | false |
addresseeDN | The DN of the addressee of the task. In the case of a re-assign, this will have the DN of the new addressee. | false |
addresseeName | The name of the addressee of the task. In the case of a re-assign, this will have the name of the new addressee. | false |
formId | The ID of the request form (if available) | false |
formName | The name of the request form (if available) | false |
formData | The request form data in JSON format (if available) | false |
The Workflow Escalated event is logged whenever a workflow task is escalated.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.escalate |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who escalated the task: “RapidIdentity Portal Agent” | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The name of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the workflow | false |
workflowId | The ID of the workflow being executed | false |
workflowDN | The DN of the workflow being executed | false |
workflowName | The name of the workflow being executed | false |
requestType | The type of the request: GRANT or REVOKE | false |
taskId | The unique ID of the task | false |
addresseeId | The ID of the new (escalated) addressee of the task | false |
addresseeDN | The DN of the new (escalated) addressee of the task | false |
addresseeName | The name of the new (escalated) addressee of the task | false |
The Workflow Certified event is logged whenever a resource association is certified.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.reAttest |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who escalated the task: “RapidIdentity Portal Agent” | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The DN of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the workflow | false |
comments | The comments, if any | false |
newExpirationDate | The new expiration date in UTC Unix timestamp format (if applicable) | false |
The Workflow Cancelled event is logged whenever a user attempts to cancel a running workflow.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.cancel |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who canceled the workflow | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The DN of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the workflow | false |
workflowId | The ID of the workflow being executed | false |
workflowDN | The DN of the workflow being executed | false |
workflowName | The name of the workflow being executed | false |
comments | The comments, if any | false |
The Workflow Association Expiration Forced event is logged for each association which is updated whenever a Workflow Admin forces the expiration for all granted associations to a particular Entitlement.
Name | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.associationExpirationForced |
target_system | WORKFLOW_DB |
target_id | The idautoID of the affected user |
target | The DN of the affected user |
Name | Value/Description |
|---|---|
associationId | The ID of the association which was updated |
newExpirationTimestamp | The new ISO8601 date/time for the expiration (if a time component is involved) |
newExpirationDate | The new ISO8601 date for the expiration (if no time component is involved) |
requestableId | The ID of the Entitlement |
requestableName | The name of the Entitlement |
The Workflow Association Removed event is logged whenever a user attempts to remove a stale workflow resource association.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.removeAssociation |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who canceled the workflow | false |
requestableId | The ID of the resource or role of the request | false |
requestableDN | The DN of the resource or role of the request | false |
requestableName | The name of the resource or role of the request | false |
requestId | The unique ID of the workflow | false |
comments | The comments, if any | false |
The Workflow Entitlement Expiration Forced event is logged whenever a Workflow Admin forces the expiration for all granted associations to a particular Entitlement.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.forceEntitlementExpiration |
target_system | WORKFLOW_DB |
target_id | The ID of the Entitlement |
target | N/A |
Name | Value/Description |
|---|---|
numExpired | The number of associations whose expiration date were updated |
newExpirationTimestamp | The new ISO8601 date/time for the expiration (if a time component is involved) |
newExpirationDate | The new ISO8601 date for the expiration (if no time component is involved) |
requestableName | The name of the Entitlement |
The Workflow Granted event is logged whenever a workflow resource or role is granted.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.granted |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
requestorName | The name of the workflow recipient | false |
requestorName | The name of the user who requested the resource or role | false |
requestableId | The ID of the resource or role which has been granted | false |
requestableDN | The DN of the resource or role which has been granted | false |
requestableName | The name of the resource or role which has been granted | false |
requestId | The unique ID of the workflow | false |
The Workflow Revoked event is logged whenever a workflow resource or role is revoked.
Column | Value/Description |
|---|---|
product_id | net.idauto.audit.common.product.arms |
module_id | net.idauto.audit.arms.module.workflow |
action_id | net.idauto.audit.arms.workflow.action.revoked |
target_system | WORKFLOW_DB |
target_id | This will contain the Idauto ID of the recipient |
target | This will contain the DN of the recipient |
Name | Value/Description | Multi-valued |
|---|---|---|
targetName | The name of the workflow recipient | false |
requestorName | The name of the user who requested the resource or role be revoked | false |
requestableId | The ID of the resource or role which has been revoked | false |
requestableDN | The DN of the resource or role which has been revoked | false |
requestableName | The name of the resource or role which has been revoked | false |
requestId | The unique ID of the workflow | false |