Report Name  

What does it Convey

Additional Information

Password Inventory Report

This report provides a snapshot of details about the total number of resources, passwords, resource types and users present in PMP. Besides, it provides details about the ownership of each password/resource and details about the time at which the passwords were accessed.

There are three sections in this report:

Password Inventory Summary

This section lists down the details in summary about the total number of resources, passwords, resource types and users present in PMP.

Password Inventory by Resource Type

This section provides a pie-chart showing the distribution of passwords in accordance with the resource type.

Password Ownership & Access Details

This section lists down the ownership details of resources and passwords in tabular form. You can make a search in this report by clicking the icon present at the top-right hand corner of the table.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Schedule Report

Password Compliance Report

This report provides a snapshot of details about the passwords that comply to the password policy set by the administrator and the ones that do not comply. Besides, it provides details about the ownership of each password.

Also, in the case of the passwords which are found to be non-compliant, details about non-compliance are also provided. This helps in taking the required corrective action immediately to make them compliant.

There are three sections in this report:

Password Policy Compliance - Summary Report

This section lists down the details in summary about the total number of passwords, total number of passwords that comply to the policy and total number of passwords that are non-compliant.

Policy Violation by Resource Type

This section provides a pie-chart showing the number of passwords that are non-compliant to the defined policy based on the resource type.

Password Compliance - Detailed Report

This section lists down the compliance details of all the resources (whether they are compliant with the defined policy or not). It also depicts the number of violations in each resource and the ownership details of resources and passwords in tabular form. You can make a search in this report by clicking the icon present at the top-right hand corner of the table.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Password Expiry Report

This report provides information about the validity details of passwords. In other words, it provides details about the passwords that have expired and the passwords that are valid.

There are three sections in this report:

Password Expiry - Summary Report

This section lists down the details in summary about the total number of passwords, total number of expired passwords and total number of valid passwords.

Password Expiry by Resource Type

This section provides a pie-chart showing the number of expired passwords in each resource type.

Password Expiry - Detailed Report

This section lists down the expiry/validity details of all the resources. It also depicts the number of expired/valid passwords in each resource and the ownership details of resources and passwords in tabular form. You can make a search in this report by clicking the icon present at the top-right hand corner of the table.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Password Activity Report

This report provides information about the usage details of all passwords in the system. It provides details about the passwords that were most accessed during a specific time period, the ones that were least accessed, average access per day, per week, passwords that were frequently reset etc.

There are six sections in this report:

Activity Statistics  - Summary Report

This section lists down the details in summary about the total number of passwords, average access per day/ per week, average password age, the number of passwords for which reset is supported, number of passwords that were reset using agents, number of passwords that were reset without agents, number of failures in password reset etc.

Top 10 Passwords Access Count

This section provides a graph showing the top 10 passwords that were accessed most.

Top 10 Passwords Reset Count

This section provides a graph showing the top 10 passwords that were reset most.

Bottom 10 Passwords Access Count

This section provides a graph showing the least accessed 10 passwords.

Bottom 10 Passwords Reset Count

This section provides a graph showing the least reset 10 passwords.

Password Activity Details

This section provides the following details about the passwords that are in sync with the target systems:

Date of creation of the password, number of times the password had been accessed from the date of creation,
number of time the password underwent changes, the time at which the password was accessed/changed last, the frequency at which the password is being accessed every day, the frequency at which the password is being changed every week etc.
 

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Password Integrity Report

Passwords of resources such as servers, databases, network devices and other applications are stored in PMP. It is quite possible that someone who have administrative access to these resources could access the resource directly and change the password of the administrative account. In such cases, the password stored in PMP would be outdated and will not be of use to the users who access PMP for the password. PMP provides option for checking the integrity of passwords at any point of time on demand and also at periodic intervals.

You can create a scheduled task for carrying out the integrity check at periodic intervals. Click "Schedule Report" and fill-in the details.

You can also generate the integrity report at any point of time by clicking the link "Generate Report". When you do so, you will get the results of the automatic integrity check done by PMP at 1 AM every day for all the accounts for which remote synchronization has been enabled. The results of the current day's check done at 1 AM will be depicted in the report.

In case, you want to carry out integrity check at any moment on demand to get latest details, you need to click the option "Run Integrity Check". PMP will try to establish connection with the target systems for all the accounts for which remote password synchronization has been enabled. Once the connection is established, it tries to login with the credentials stores in PMP. If login does not succeed, PMP concludes that the password is out of sync. In case, PMP is not even able to establish connection with the system due to some network problem, it will not be taken as password out of sync. A consolidated notification would be emailed to all the administrators and auditors.

The Password Integrity report provides information if the passwords in the system are in sync with the corresponding passwords in the target systems.

There are two sections in this report:

Password Integrity - Summary Report

This section lists down the details in summary about the total number of passwords for which reset is supported, passwords for which reset is done using agents, number of passwords that were reset using agents, number of passwords  in the system are in sync with the corresponding passwords in the target systems, number of passwords that are out of sync etc.

Password Integrity - Details

This section provides details about the integrity status, who carried out password reset, the time at which the reset was done etc.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Report Name  

What does it Convey

Additional Information

User Access Report

This report provides details about all users in the system with reference to password and resource access.

This report has three sections:

User Statistics - Summary Report

Details such as the number of new users added during the last five days, users deleted, role change, number of invalid login attempts, users who carried out password reset during the past five days, users who did not login during the last five days, total number of users/user groups in the system, user roles etc are presented as part of this report.

User Activity Summary Report

The actions performed by users on passwords such as password retrieval, password reset etc captured as part of this summary report. This report provides the number of such actions done by each user. Similarly, the number of password actions performed by members of each user group are also depicted.

User Access Details

The resources and resource groups that are owned by/shared to each user are depicted as part of this report. The privileges allowed for the user are also listed.

User Group Access Details

The list of users who are members of the group, resource groups that are owned by/shared to the user group are depicted as part of this report.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

User Activity Report

This report provides details about the password usage of all the users in the system.

This report has four sections:

Activity Statistics - Summary Report

The total number of passwords accessed by users and user groups during a specified time period are depicted in the form of graphs.

Top 10 Users - Login/Access/Reset

The list of the top 10 users who performed most login attempts, most password access and most password resets.

Bottom 10 Users - Login/Access/Reset

The list of 10 users who performed least login attempts, least password access and least password resets.

User Activity Details

All details about users, including the total number of login attempts made, number of invalid attempts, number of passwords accessed, number of passwords reset are depicted.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Report Name  

What does it Convey

Additional Information

Executive Report

This report provides a snapshot of all password access and user activities in the system.

It is a combined report of Password and User reports. It provides details, in summary, about the following:

Password Statistics, Password Activity, Password Policy, Password Expiry, Password Out of Sync, User Statistics and User Activity.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.

Report Name  

What does it Convey

Additional Information

PCI DSS Compliance Report

The PCI DSS stands for Payment Card Industry Data Security Standard. It is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. It represents a set of rules that need to be adhered to by businesses that process credit cardholder information, to ensure data is protected. The PCI Data Security Standard is comprised of 12 general requirements designed to:

• Build and maintain a secure network

• Protect cardholder data

• Ensure the maintenance of vulnerability management programs

• Implement strong access control measures

• Regularly monitor and test networks

• Ensure the maintenance of information security policies

This standard is governed by PCI Security Standards Council https://www.pcisecuritystandards.org/

This reports the violations in your network from the requirements of Payment Card Industry (PCI) Data Security Standard (DSS), relevant to the use and management practices of shared administrative, software and service account passwords of various systems.

PCI DSS requirements 2,3,7,8,10 & 12 are covered in this report.

Note: In order to adhere to "all" the requirements of the PCI DSS standard completely, you will need other tools and security procedures to be implemented.

You have the option to generate separate compliance reports for each PCI DSS requirement 2,3,7,8,10 & 12. You can also generate a consolidated PCI DSS report too.

This report can be generated in the form of PDF and can be emailed to required recipients. Click the links "Export to PDF" and "Email this Report" to do the required operation.