Roles and responsibilities

Getting started as the Admin

As an Admin group user, you are responsible for administering the product. You can perform the following tasks in the product:

Establish connection with the Active directories: This includes tasks such as configuring, updating, deleting domains and updating their service account discovery details.
Monitor domain activities: This includes tasks such as viewing domains and their service account discovery details, viewing the password expiration status of the accounts and notifying service account managers accordingly, and monitoring the service account activity to identify accounts that are not performing activities or suspicious accounts, which pose a risk of being compromised.

Getting started as the Chief Information Security Officer (CISO)

As a Chief Information Security Officer (CISO) group user, you are responsible for monitoring domains and their service accounts, and their activities that will help you determine which service accounts are suspicious or at a risk of being compromised. Some of the monitoring activities that you can perform in the product are as follows:

View the number of service accounts that have engaged in activity and which have not.
View the top ten service accounts that have engaged in maximum activity. This information helps you determine if any of these service accounts require close monitoring.
View the password expiration status of the service accounts and notify service account managers accordingly.
Monitor the service account activity to identify the accounts not performing any activities and hence pose a risk of being compromised.
Monitor the service account activity to identify suspicious accounts, which pose a risk of being compromised.
View the names of the services with which a service account is associated, which helps in understanding which services need to be reconfigured whenever the service account password is updated.