View Dashboards and Reports

View dashboards and reports after all components are installed, and the security is configured. The starting point for the reports is ErpSummary located in the BeyondTrust Endpoint Privilege Management Reports folder.

Endpoint Privilege Management report server URL in SSRS.

To find the correct URL, go to Reporting Services Configuration Manager > Web Service URL as shown here. By default, the web service URL is https://<reportingserver>/ReportServer.

 

Access Endpoint Privilege Management reports on the report server.

After you navigate to the URL, click the BeyondTrust Endpoint Privilege Management Web directory, and then click the ERP summary report.

After you navigate to the ERP Summary report, save the address to your browser’s Favorites list.

 

The following dashboards are available:

Summary This report provides a summary overview of information that is available to query.
Discovery A collection of reports that display the applications that are new to the database. The information can be used to inform Workstyle updates.
Actions Summarizes audited items categorized by the type of action taken. This allows focusing on the topic of interest. For example, elevation, blocking, etc.
Target Types Summarizes specific application types that have launched and have been audited. This dashboard includes a sub-report All, where all raw application type data can be viewed in a tabular report.
Workstyles Summarizes all Endpoint Privilege Management Workstyle usage, including coverage statistics. It identifies the top ten Workstyles responsible for various application outcomes, e.g. elevated, blocked, passive audited, or allocated a Custom Token. This dashboard includes a sub report All, in which all raw Workstyle data can be viewed in a tabular report.
Users Summarizes how users have interacted with messages, challenge / response dialog boxes and the shell integration within the specified time range.
Deployments Summarizes Endpoint Privilege Management Client deployments. The report shows which versions of Endpoint Privilege Management are currently installed across the organization. It includes asset information about endpoints such as operating system and default language to assist with Workstyle targeting.
Requests Summarizes information about the requests that have been raised over the time frame. A blocked message with a reason entered or a canceled challenge / response message is a request.
Events Summarizes information about the types of events raised over the time frame. It also shows how long it is since the hosts raised an event.
Database Administration

Exposes applications creating excess data that floods the database and impacts performance. It allows purging and suppression of application audits when applications are observed to create undesired audits.

The Database Administration dashboard is not available from the Endpoint Privilege Management Reporting interface.

Reports are available from the root directory if selected during the Reporting Pack installation:

https://<reportingserver>/ReportServer/

  1. Navigate to the root directory in the internet browser address bar and click BeyondTrust Endpoint Privilege Management.
  2. Click Admin, and then click ErpEventsAdmin.
  3. The Database Administration dashboard is displayed.

There are summary reports available for key items common throughout the dashboards. Click the Information logo (i) to view a summary report.

  • Application Summary Report: Detailed statistical overview of a unique application.
  • Event Summary Report: Detailed event log style summary of an event instance.
  • User Summary Report: Detailed statistical overview of a user account.
  • Host Summary Report: Detailed statistical overview of a host computer.
  • Workstyle Summary Report: Detailed statistical overview of an Endpoint Privilege Management Workstyle.

You can drill down to more details on many charts and tables in the dashboards.

For more information, see the following: