🪺Applications and Groups Tabs
Overview
The Applications and Groups tabs in the User 360 profile can show you a user's static entitlement data, providing a better understanding of what a user has access to, and how they have access to it.
The Applications and Groups tab are the fifth and sixth tabs, respectively, of the User 360. Below we'll dive into the specific data and functionality for each tab.
Applications
On the Applications tab, you will see a table of the applications assigned to a given user, as well as a few visualizations related to the user's application usage.
Applications table elements
The section below details the fields that appear in the Applications table, as well as the definition of each field:
Name
The application name and application user ID a ssociated with the application for the user If an application is on your Sensitive Applications list, there will be a 'Sensitive Applications' tag next to the application name
Source
The identity source associated with the application assignment
Status
Only available for Okta The Okta application status
Assignments
The group membership that allows a user to have access to a particular application. Users can gain access to an application without a group (blank or 'directly assigned application') or via more than one group, where you'd see multiple group names in this column
Owners
Only available for Entra The individual listed as the application's owner in Entra
Usage Count
The number of times a user has used a particular application
By default, the table is sorted on usage count in descending order (most frequently used to least frequently)
Last Access (UTC)
The last date and time the user accessed an application
Result
The result associated with the user's last access attempt for an application
Applications tab general actions
The Applications table offers multiple high level features that are similar to what can be found elsewhere in the platform. Click through the tabs below to learn more about how to utilize each feature.
View Activity
Click the 3 dot button to the right of the last column, to find the View Activity action. This will take you to the user's Activity tab, pre-filtered on the application name, so that you can see all of a given user's activity/events for a particular application.
View Users
Click the 3 dot button to the right of the last column, to find the View Users action. This will take you to the Users page, pre-filtered on the application name, so that you can see all the users in your environment who have this application assigned to them.
Sort columns
All columns, except 'Assignments' and 'Owners', can be sorted in ascending or descending order on the Applications table. To sort by a specific column value, click the column header to switch between ascending and descending. By default, the Applications tab is sorted in descending order (highest to lowest) on Usage Count.
Add more rows
By default, the Applications table will show 12 rows at a time. To see 24 or 48 rows in one view, click on the Rows per page button on the bottom right of the Applications table
If there are more than 48 applications assigned to a user, use the left and right arrows to navigate to other pages.
Application usage visualizations
The Applications tab has 3 widgets that display data about a user's application assignment and usage trends.
Applications usage - Total number of applications assigned to the user, broken down by used applications and unused applications
Hovering over a segment of the pie chart will display a tool tip with the application count
Applications usage over time - A given user's total application usage count per day, color coded by application
Hovering over a segment of a given bar will display a tool tip with the date, application name and usage count. By default the view is set for 30 days, but this can be adjusted to see a wider or smaller window of time using the + and - buttons in the top right corner of the widget
Median apps per user - Compares the median number of applications a particular user has assigned to them versus all users in the organization, other users in their department and other users reporting to the same manager (if department and manager data is available for the given user)
Hovering over a bar will display the median application count per user for each category
To export any of the visualizations, click on the 3 line button in the top right corner of the desired widget. Downloading as a SVG or PNG will export an image, whereas downloading as a CSV will export the raw data for you in CSV format.
Groups
Similar to the Applications tab, the Groups tab also shows you static entitlement data related to a given user's group assignments.
If there have not been recent changes to a user's groups, the changelog widget to the left of the Groups table will not be visible.
Group table elements
The section below details the fields that appear in the Groups table, as well as the definition of each field:
Name
The name of a particular group the given user is part of. If available from the source, it will also display a description of the group and the date the user was added to this group
Clicking on a group name will take you to the Users page, pre-filtered on the group name to show you other users that are part of a particular group Hover over the group name or description to see a tooltip with the full details
Type
A given user's role type or group type for a specific group within the identity source
Note: Certain role (ex: PIM Admin) or group (ex: Microsoft365) types are only available for certain identity source
Source
The identity source associated with the group
Added By
The email address of the user who added a given user to the group
Applications
The number of applications members of the group have access to
Users
The total number of users assigned to the group
Visibility
Only compatible with Entra groups. Used to manage and control access to applications. Possible values as defined by Entra: - Public - Private - Hidden
Groups tab general actions
The Groups table offers multiple high level features that are similar to what can be found elsewhere in the platform. Click through the tabs below to learn more about how to utilize each feature.
Search issues
Use the search bar above the Groups table to search based on various fields such as group name, description or associated application names. When searching, you do not need to provide an exact value. Typing a piece of the word will return results.
You can also add a value from the Type or Source column as a search parameter by clicking the value in the table (ex: Role or Okta).
If you have searched on a particular parameter, the search criteria is retained as you navigate between different tabs within the platform.
To clear the search bar click the X on the right most side of the search bar.
Sort columns
All columns, except 'Added by' and 'Applications', can be sorted in ascending or descending order on the Groups table. To sort by a specific column value, click the column header to switch between ascending and descending. By default, the Groups tab is sorted in descending order (A-Z) on Name.
See more Group data
Like in the Activity and Networks table, clicking on the blank space in a given row will show you more information on a particular group.
This will open a slide panel from the right side of the page, that has 2 tabs - Applications and Changelog
Applications shows you the names of the applications associated with a given group
Clicking on View Activity for a particular application will take you to the user's Activity tab, pre-filtered on events associated with the selected application
Clicking on the Application name will take you to the Users page, pre-filtered on the Application name so you can see all other users who have been assigned the selected application
Changelog shows you changes associated with a given group, including the name of the group, the user who made the change, the date and time of the change, and what the change was (added, removed, etc). The same information can be found in the Changelog widget to the left of the table if there has been any activity for the give user
Clicking on a Group name in either the slide panel or the Changelog widget will take you to the Users page, pre-filtered on the Group name so you can see other users associated with the selected group
To close the slide panel, click the in the top right corner, or click anywhere outside of slide panel.
Group visualizations
The Groups tab has 2 widgets that display data about a user's group assignments and group changes.
Group changes over time - A given user's total number of group changes per day, color coded by change type (added or removed)
Hovering over a segment of a given bar will display a tool tip with the date, change type, and event count. By default the view is set for 30 days, but this can be adjusted to see a wider or smaller window of time using the + and - buttons in the top right corner of the widget
Median Groups per user - Compares the median number of groups a particular user is assigned to them versus all users in the organization, other users in their department and other users reporting to the same manager (if department and manager data is available for the given user)
Hovering over a bar will display the median number of groups per user for each category
To export any of the visualizations, click on the 3 line button in the top right corner of the desired widget. Downloading as a SVG or PNG will export an image, whereas downloading as a CSV will export the raw data for you in CSV format.
Last updated