Verify Import Data
When adding a brand new plugin, or when significant updates have been made to a plugin, we recommend doing some verification so you feel confident in the results and are prepared for future audits.
NOTES:
-
Document this process for audit and examination purposes - especially if you are importing data for the first time. Often, auditors will require this type of documentation to ensure you've created a solid baseline of data and to prove completeness and accuracy.
-
This verification step does not need to be done every time you import data.
-
If you'd like a worksheet to help you record and store this information, contact your Sycorr client success specialist at sycorr.com/support.
Verification Checks
To verify results, go through your standard verification process as usual. If you don't have a standard process already in place, typical checks we suggest are listed below:
-
Total counts - compare the total number of users within the application to the number of users that were imported into Permission Assist. If groups and group permissions are also being imported, compare the total number of groups within the application to the groups within Permission Assist
If this is your first import, your auditors may ask for the following documentation related to total counts:
-
Screenshots of the users list within the application just before downloading the report (include the date and time)
-
Screenshots of the groups list within the application just before downloading the report (include the date and time)
-
If the plugin isn't connecting to the application directly, they'll often ask for screenshots of the reports being downloaded within the application (include the date and time)
-
The original file that was imported into Permission Assist
NOTE: This file is saved with the import data for historical and auditing purposes. When a review is started, the file and the import statistics are included in the Application Imports report.
-
-
Headers, roles, and permissions - checking the Privileges tab within the application to make sure all the headers, roles, and permissions are showing up as they should be. To get to the Privileges tab, go to Manage > Applications > select the application > Privileges tab.
If this is your first import, your auditors may ask for the following documentation related to spot checks:
-
Screenshots of the permissions within the Privileges tab (include the date and time)
-
-
Spot check - select a statistically significant number of users and review their permissions in detail to ensure their permissions are showing up accurately. It's also helpful to check any "odd ball" users (users that may be set up differently than most.) To spot check users, go to Manage > Applications > select the application > Users > select a user > Privileges tab in the detail panel on the right side of the page.
If this is your first import, your auditors may ask for the following documentation related to spot checks:For each user spot checked:
-
Screenshots of the user's permissions within the application (include the date and time)
-
Screenshots of the user's permissions within Permission Assist (include the date and time)
Additional reports you may want to generate and store with your documentation are listed below:
-
Application Users (Reports menu > Applications > select the application > Application Users report)
-
Application Groups (Reports menu > Applications > select the application > Application Groups report)
-
Current Permissions by Application (Reports menu > by Application > select the application > Export button)
-
Current Identity Permissions (Reports menu > by Identity > select the Identity > Export button)
-