User Tools

Site Tools

:: Version 2.6.0 ::

2_6_0:admin:audit

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

2_6_0:admin:audit [2019/01/09 16:40] (current)
Line 1: Line 1:
 +====== Auditing the CMDB ======
 +
 +The "​Audit"​ is an iTop feature designed to check the consistency of information stored in the iTop database. Using the audit, you can answer questions like: “Do we have an active support contract defined for any device in production?​” or “Do we know the localization of all the servers for on-site support?”
 +
 +{{:​2_6_0:​admin:​audit-report.png?​450|Example of a simple audit report}}
 +
 +
 +The verifications are named **audit rules**.
 +
 +**Audit rules** are grouped into **audit categories**. ​ A category defines the list of objects (the scope) that must be compliant with the rules. This scope is defined using an OQL query, so that the actual scope will be computed dynamically. Example: all devices that are in production => ''​SELECT Device WHERE status = '​production'''​.
 +
 +An **audit rule** defines the actual constraint that needs to be checked. For instance “Devices being attached to an active support contract.”. It is also defined by an OQL query.
 +
 +To add or modify an **audit category** or an **audit rule**, click on “Audit Categories” in the “Admin tools” module.
 +
 +===== Understanding the Audit Report =====
 +
 +
 +The audit is run interactively by clicking the "​Audit"​ link in the "Data administration"​ menu.
 +
 +{{:​2_6_0:​admin:​audit-report2.png?​500|Explanations of the Audi Report}}
 +
 +The audit report list all the categories to be audited. For each category the header line contains:
 +  * The number of objects in this category
 +  * The number of objects with **at least one error** (as reported by the category'​s rules)
 +  * The percentage of objects without error in this category
 +  * The for each rule, an additional line indicates:
 +    * the number of objects in error //for this rule//. Clicking on the number displays the list of objects in error
 +    * the percentage of objects without error //for this rule//
 +
 +
 +
 +===== Managing Audit Categories =====
 +
 +An audit category is defined by a name, a description and a definition set.
 +The definition set defines the scope of objects that will be subject to the related audit rules. It is an OQL query.
 +
 +{{:​2_6_0:​admin:​new-audit-rule1.png?​500|New Audit Category}}
 +
 +To create or remove audit rules for a given category, use the button "​Create a new Audit Rule" or "​Delete"​ from the "Audit Rules" tab on the Audit Category
 +
 +{{:​2_6_0:​admin:​new-audit-rule.png?​500|New Audit Rule}}
 +===== Managing Audit Rules =====
 +
 +An audit rule is defined by a name, a description,​ the query to check and a Valid Object flag.
 +
 +The query defines the list of objects (under the scope defined by the category) that pass/fail the audit.
 +
 +Since it is sometimes easier to list the objects that pass the audit than the objects that fail, the flag “Valid Objects ?” is used to indicate whether the query returns the “valid” objects or the “invalid” ones.
 +
 +Note that a rule is always linked to only one category; and this category determines the scope of the rule.
  
2_6_0/admin/audit.txt · Last modified: 2019/01/09 16:40 (external edit)

";