Mapping unknown accounts to directory users

After syncing your application data, a list of accounts will be populated under the Accounts tab.

Note:

 

Some accounts are flagged as Unknown User Accounts. This highlights accounts that are of type “User” but are not associated with users in the directory.

Click the Map to Directory link under Unknown User Accounts in the Accounts Summary bar to review these accounts.

 

To map an account to a user in the directory, select a user in the user picker that matches the identity of the account. All active members of the directory are present in the dropdown.

 

There are several mapping rules to help map the application accounts to directory users. For example, in the directory a user might be “Thomas Anderson”, but their account ID in the application is TAnderson. By applying the rule “Account Id = FirstInitial+LastName” to the unmapped accounts, Zilla will quickly match users with account IDs.

Preview to confirm the rule and save the mapping.

 

Accounts can be marked as API, Bot, Service, Shared or User. During an access review, details about Account Type can help a reviewer determine if access should be maintained.

You are also able to create your own Account Types as well. For Example, if you wanted to add an Account Type called ‘Contractor’, then you can type it into the Account Type cell for an account, save it, then enter, and it will appear as a new option.

The general rule to follow when mapping users is:

  1. Use the automated mapping rules to attempt to map any accounts not automapped

  2. Assign an owner to each service account, and mark them as account type ‘Service’ or ‘API’

  3. Mark any Vendor or Contractor accounts

  4. assign a user profile to anything that still remains