Reports
Veza Reports enable organization, monitoring, and action on the most critical insights for security teams and individual Veza operators.
Last updated
Was this helpful?
Veza Reports enable organization, monitoring, and action on the most critical insights for security teams and individual Veza operators.
Last updated
Was this helpful?
You can review all built-in and user-created reports in the Reports Library, and organize them on the Access Intelligence > Reports overview. You can also customize on the home dashboard by adding, removing, or modifying report and queries.
Reports are collections of , organized into sections based on provider, service, risk, or other criteria. A summary of key reports appears on the primary Veza dashboard.
Browse to Access Intelligence > _Reports > All Reports to view all reports. For any query in a report, you can
See the percent change, current result, or trend chart.
View results in or .
Create to get alerts when changes occur.
View the underlying query details and conditions.
Each query indicates the current result value. Click the % Change to view a trend chart.
Hide zero value results will conceal assessment queries where the value column is 0 (no current results).
To view all results in Query Builder or edit the saved query, click the Query name or value.
To refresh the query from the most recent graph data, click Run Query under the actions dropdown menu. All results automatically refresh daily.
The main Access Intelligence > Reports page allows you to organize and rank reports intended for regular review. Expand a category to view the reports within it, and click a report's name to open it. You can create additional categories, and add or remove built-in or custom reports:
Search for specific reports, labels, or integration types by applying filters.
Click + Add Category to create a grouping and Add or Create reports within it.
Reports added to the Dashboard Reports category are shown on the main dashboard.
Drag an item to arrange the report categories. You can also hide or re-categorize several reports at one time with a multi-selection.
To make reports containing many different queries more digestible, you can temporarily filter the information to show and export.
To show queries by keyword such as "MFA," "Service Account," or "Bucket", start typing into the Find queries by name field at the top of the report.
Changing the Time Range updates the minimum and maximum values to show values for that period.
Clicking a cloud provider icon within a report subcategory will show only queries for that provider (such as Okta or Azure AD).
To only show results for a subset of Azure tenants or AWS accounts, use the Select one or more accounts dropdown. This can be useful for focusing on a specific account of interest among several similar provider integrations.
To export a report to CSV or PDF, click Export and select an option. The data export will include columns for Name, Value, Min_Range, Max_Range, and Time_Range, for the currently-filtered set of queries.
Browse to Access Intelligence > Reports.
Click + Create Report.
Give the report a Name and Description.
Choose a Report Type:
Dynamic: These reports automatically include all queries with the chosen labels and integrations, and will dynamically update when queries receive those tags or integrations. Queries and sections cannot be manually added or removed.
Query Based: Customize report sections and pick from any saved queries. You can add or remove queries and change report sections after creating the report.
Pick a visibility setting. Private reports are only visible to their owners. Setting a report to Public publishes it for other Veza users.
To enable the report as a dashboard, use the Collections dropdown to add the report to the "Dashboard Reports" collection.
Use the Queries tab to construct the report:
For dynamic reports, choose the labels and integrations to include in the report.
For query-based reports, click New Section to add as many sections as you need. Search for queries to add by clicking the Add Queries icon within each section.
To edit a report, open the report from the dashboard or Reports library, and click Edit Report.
You can use edit mode to:
Add or remove queries.
Add or remove or rename sections.
Change the report name or description.
Change a private report to public visibility.
Click Save to close the builder and see the changes.
To add an item to the report, change to Edit mode and click the Add Queries button. Filter or search to find the queries you want to add. Click on one or more, and Save the changes.
To remove a query from a report, click Edit Report.
Click the trash can icon in the query actions to remove that query from the report.
Deleting a query only removes it from the report. You can still add the query to other reports, and find it listed under Saved Queries.
To delete a report, open it and click the trash can icon, or use the Reports Library to manage many reports at one time.
When creating a report, users must set the visibility to public or private (default). Changing a report to public is permanent. The Reports Library shows all built-in and custom reports and privacy settings.
To modify report owners, edit a report and choose Edit Owners.
Only the report owners can view or edit private reports.
Users are the owners of any queries and report they create.
Users with the admin role are the default owners of out-of-the-box queries and reports.
Veza users can create and dashboard sections tailored to specific roles, priorities, and responsibilities. Reports are public to other users or only visible to owners depending on the report's visibility settings.
Administrators can customize the insights shown on the Veza dashboard by editing, removing, or adding reports to the section. Access Risk tiles on the landing page show a summary of results from the Dashboard reports category. Each tile provides a shortcut back to the underlying report for further investigation.
The Report Library shows all reports, and their creation dates, owners, and privacy settings. To create a copy of a report, click Clone. Click a report name to view or its contents.
Click to permanently remove a query. Click Clone to create a copy of the report.
Users with the admin and operator can create reports that include any , grouped in custom sections. To create a report:
Click Create Report to open it in .
Adding or removing queries from a will include or exclude the results of those queries on the home page dashboard.
