Queries can be defined from user, DIGIPASS, and audit data fields. The fields listed below are available for selection when defining a query.
|
Display Name |
Type |
Accepted Values |
|---|---|---|
|
Domain Link |
String |
Domain of linked user. |
|
User:Back-End Authentication |
String |
|
|
User:Created time |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
User:Description |
String |
|
|
User:Disabled |
Boolean |
|
|
User:Domain |
String |
|
|
User:Email |
String |
|
| User:Expiration Date | Date | Format: yyyy/mm/dd hh:mm:ss |
|
User:Has Digipass |
String |
|
|
User:Link |
String |
User ID of linked User. |
| User:Last Authentication | String | |
|
User:Local Authentication |
String |
|
|
User:Lock Count |
Number |
|
|
User:Locked |
Boolean |
|
|
User:Mobile |
String |
|
|
User:Modified time |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
User:Organizational Unit |
String |
|
|
User:Phone |
String |
|
|
User:Status |
String |
|
|
User:User ID |
String |
|
|
User:User Name |
String |
|
| User Attributes:* | String |
The fields specified in the user field list can be referred to in the XSLT templates.
|
Display Name |
Type |
Accepted Values |
|---|---|---|
|
Digipass:Application Names |
String |
Comma-separated list of DIGIPASS Application Names. |
|
Digipass:Application Types |
String |
Comma-separated list of DIGIPASS Application Types. |
|
Digipass:Assigned |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Digipass:Backup VDP Enabled |
String |
|
|
Digipass:Backup VDP Expires |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Digipass:Backup VDP Uses Left |
Number |
|
|
Digipass:Created time |
Date |
Format: yyyy/mm/dd hh:mm:ss |
| Digipass:Description | String | |
|
Digipass:Digipass Type |
String |
5-character code. |
|
Digipass:Domain |
String |
|
|
Digipass:Expiration Date |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Digipass:Grace Period End |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Digipass:Modified time |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Digipass:Serial Number |
String |
|
|
Digipass:Status |
String |
|
|
Digipass:User ID |
String |
User ID of the user to whom the DIGIPASS authenticator is assigned. |
|
Display Name |
Type |
Accepted Values |
|---|---|---|
|
Audit:Action |
String |
|
|
Audit:AMID |
String |
|
|
Audit:Application |
String |
|
|
Audit:Area |
String |
|
| Audit:Back-End Authentication | String | |
|
Audit:Category |
String |
|
|
Audit:Characteristics |
String |
|
|
Audit:Client Location |
String |
|
| Audit:Client Type | String | |
|
Audit:Code |
String |
|
|
Audit:Command |
String |
|
|
Audit:Configuration Details |
String |
|
|
Audit:Credentials |
String |
|
|
Audit:Data Source |
String |
|
|
Audit:Data Source Location |
String |
|
|
Audit:Description |
String |
|
|
Audit:Downtime |
Number |
|
|
Audit:Error Code |
Number |
|
|
Audit:Error Details |
String |
|
|
Audit:Error Message |
String |
|
| Audit:Expiration Date | Date | Format: yyyy/mm/dd hh:mm:ss |
|
Audit:Fields |
String |
|
|
Audit:From |
String |
|
|
Audit:Input Details |
String |
|
| Audit:IP Address | IP Address |
Mandatory. Valid IPv4 address range using CIDR notation to filter audit messages, if the client IP address is either within the specified address range or not. Can be used with the following conditions only:
|
| Audit:Local Authentication | String | |
|
Audit:Message |
String |
|
|
Audit:Object |
String |
|
|
Audit:Operation |
String |
|
|
Audit:Outcome |
String |
|
|
Audit:Output Details |
String |
|
|
Audit:Password Protocol |
String |
|
|
Audit:Policy ID |
String |
|
|
Audit:Quota |
Number |
|
|
Audit:RADIUS Octets Input |
Number |
The number of bytes sent by the user |
|
Audit:RADIUS Octets Output |
Number |
The number of bytes received by the user |
|
Audit:RADIUS Status Type |
String |
The audit function performed – for instance, start, stop, update |
|
Audit:Reason |
String |
|
|
Audit:Request ID |
String |
|
|
Audit:Request Type |
String |
|
|
Audit:Server Location |
String |
|
|
Audit:Session ID |
String |
|
|
Audit:Session Time |
Number |
How long the user has been connected, in seconds |
|
Audit:Source |
String |
|
|
Audit:Source Location |
String |
|
|
Audit:Timestamp |
Date |
Format: yyyy/mm/dd hh:mm:ss |
|
Audit:To |
String |
|
|
Audit:Type |
String |
|
|
Audit:Type code |
Number |
|
| Audit:User Location | String | |
|
Audit:Version |
String |
|
NoteTwo or more values after the operator will be interpreted as if the word 'and' is between them.
Any query field, which is a date field can have the following filter applied to it:
Use one of the following operators:
and specify one or more days, weeks, or months from now, where now is taken to be the current date.
The filter must be in the format:
with the exact spelling and the exact number of spaces. The number must be a numeric character. The filter is not case-sensitive.
The words from now can be replaced with ago. For example, the following term will select information 3 years old or older:
is greater than or equal to 3 years ago