Password release report

jafar 4 months ago

Dears,

The requirement is to extract the “TPAM password release report” for complete one year but seems it’s available for few months only.

Is it possible to get the report for one year?

Thanks in advance.

Top Replies

Tawfiq.Ahmad 4 months ago in reply to jafar +1 suggested

To clarify, increasing the retention to 365 days does not bring back the old data (if the setting was set to 90 days before then anything older than 90 days would no longer be available in TPAM) - Increasing...

0 Tawfiq.Ahmad 4 months ago

Hello Jafar,

TPAM keeps reports data based on the Retention Period configuration under /admin > System Status\Settings > Global Settings > Retention Period for Password Release Log

The default is 90 days for Password Release Log and therefore any older logs would not be retained by TPAM.

If you have the Data Extracts for this dataset (PasswordReleaseLog) enabled to archive to an external archive server, this would be the other way to access these older reports.

Thanks!
Cancel
Up 0 Down

Reply

Verify Answer

Reject Answer

Cancel
0 jafar 4 months ago in reply to Tawfiq.Ahmad

@Tawfiq.Ahmad

Can we change the retention perioud setting up to 365 instead of 90 days.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 Tawfiq.Ahmad 4 months ago in reply to jafar

Hi Jafar,

Yes the max is 365 days, although it is possible to configure the retention period to the maximum number of days but it is recommended to utilize data extracts instead which is the cleaner way to retain the data. Keeping more data in TPAM (depending on the size of the logs this report could generate) could eventually have an impact on the appliance performance.

Thanks!
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 jafar 4 months ago in reply to Tawfiq.Ahmad

@Tawfiq.Ahmad

Thanks for the valuable information, i can not increase the retention days because it will impact device performnce.

I want to go with another solution for archive server.

I have already configure the archive server for TPAM backup , do i need to configure any additional archive server or the same archive server i can use.

If i can use same so what kind of configuration i need to change in device.

Please suggest appreciate your reponse.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 jafar 4 months ago in reply to jafar

@Tawfiq.Ahmad

Want to add one more point, if i increase 365 days , how i clear the data after export. because after export. the data would be available device it self.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel
0 Tawfiq.Ahmad 4 months ago in reply to jafar

To clarify, increasing the retention to 365 days does not bring back the old data (if the setting was set to 90 days before then anything older than 90 days would no longer be available in TPAM)

- Increasing the setting to 365 now would only allow for the current existing password release logs to remain longer and anything older than 365 would be removed from this point forward.

- Yes you can use the same archive server where the backup is being archived if you like.

- Please refer to the administrator guide here (There is a chapter on Data Extracts configuration):

https://support.oneidentity.com/tpam/2.5.923/technical-documents

Note: Setting up data extracts would allow the current reports to be saved to an archive server externally so that you can get access to these reports offline outside of TPAM even after retention period expires, however, if older data is no longer in TPAM then it would not be included in these data extracts and only existing data from this point going forward would be available and remain on the archive server.
Cancel
Up +1 Down

Reply

Verify Answer

Reject Answer

Cancel
0 jafar 4 months ago in reply to Tawfiq.Ahmad

@Tawfiq.Ahmad

Thank you so much, for your help.
Cancel
Up 0 Down

Reply

Verify Answer

Cancel