Identifying Service Accounts
Learn how to identify service accounts within your Reltio environment, a critical step in transitioning to client credentials.
Identifying service accounts within your Reltio environment is a critical step in transitioning to client credentials. This process can be performed manually or semi-automatically, and this page provides detailed instructions for both methods.
Reltio offers semi-automatic identification of service accounts through behavioral analysis of login patterns. This method classifies users based on their login behavior.
- Behavioral Analysis: we perform behavioral analysis on login patterns. Users identified as potential service accounts should be assigned to the SERVICE_ACCOUNTS group.
- Exclusion from MFA: Users in the SERVICE_ACCOUNTS group will be temporarily excluded from the MFA process.
- Detailed Reporting: If needed, we can provide a report detailing the behavioral analysis. This report classifies users as potentially automation, potentially human, or both.
Below is a sample of what the behavioral analysis report might look like:
User | SSO | Enabled | First Login Date | Last Login Date | Active Days | Total Logins | Avg Logins Per Day | Human Login Count | SSO Logins | Login Pattern | Criteria | |
---|---|---|---|---|---|---|---|---|---|---|---|---|
data_sync | data_sync@fakecompany.com | FALSE | TRUE | 2024-01-01 | 2024-07-31 | 91 | 142765 | 411.426513 | 0 | 0 | automation | High activity, low/none human logins in 90 days |
backup_service | backup_service@fakecompany.com | FALSE | TRUE | 2024-02-06 | 2024-07-30 | 62 | 9853 | 108.2747253 | 0 | 0 | automation | High activity, low/none human logins in 90 days |
api_connector | api_connector@fakecompany.com | FALSE | TRUE | 2024-01-01 | 2024-07-31 | 91 | 17961 | 65.79120879 | 0 | 0 | automation | High activity, low/none human logins in 90 days |
report_generator | report_generator@fakecompany.com | FALSE | TRUE | 2024-01-01 | 2024-07-31 | 13 | 20 | 1.111111111 | 0 | 0 | unknown | No matching criteria |
john.doe | john.doe@fakecompany.com | FALSE | TRUE | 2024-02-01 | 2024-06-07 | 5 | 5 | 1 | 5 | 0 | human | At least one human/SSO login, no automation pattern |
jane.smith | jane.smith@fakecompany.com | TRUE | TRUE | 2024-04-29 | 2024-04-30 | 2 | 2 | 1 | 2 | 2 | human | At least one human/SSO login, no automation pattern |
If you require additional assistance or guidance, then please contact us. See topic Need some help?