Troubleshoot using IdP username as an input

Administrators may find it useful to be aware of the identity provider (IdP) username associated with the EAA Client running on a particular device. This can now be viewed as part of device details and included in device inventory reports. This can be useful for auditing and troubleshooting purposes.

Consider the following situations:
  1. A particular user has experienced access problems and you wish to analyze their device security posture to troubleshoot the problem. See Troubleshoot user related issues.
  2. Access Log reports show that a particular device couldn't access an application. Having knowledge of the IdP user associated to the EAA Client running on the device would allow you to troubleshoot further. See Troubleshoot device related issues.
In both cases you can use IdP username as an input for further investigations.
Note: If the user is logged into multiple identity providers, the IdP username will be displayed only for the IdP used to configure the client.

Troubleshoot user related issues

  1. In the EAA Management Portal menu, select Reports > Device Posture.
    The Device Posture Reports page opens.
  2. In the Inventory tab, click View Report.
    The Device inventory report opens.
  3. In Search report, enter the IdP Username of a user who reported access issues, and next locate the corresponding Device ID.


  4. Copy the Device ID by clicking the copy icon .
  5. Go to the Device History tab and paste the copied Device ID value. Click Show Device History.
    The Device history report opens.
  6. To identify causes for access issues:
    1. Click the selected date in the Signal Update Time column to display the Device Details report. This report provides you with the list of posture signals that can help you to identify vulnerabilities in the selected device.
    2. Click the View Device Access Logs icon to display the application access report. This report provides you with the log and event data for an application during a specified time period and lets you find login errors that occurred while the user attempted to access the application.

Troubleshoot device related issues

  1. In the EAA Management Portal menu, select Reports > Device Posture.
    The Device Posture Reports page opens.
  2. Click View Report.
    The Device inventory report opens.
  3. While you are scanning the inventory report, you identify a device that belongs to the high tier. Copy IdP Username corresponding to this device.
  4. In the EAA Management Portal menu, select Reports > Activity, and click Application Access.
  5. In Select Criteria, select User and in Add items paste the previously copied IdP Username value.
  6. Click View Report.

    The application access report opens. This report provides you with the log and event data during a specified time period and lets you find login errors that occurred while the user attempted to access the application.

    With this report, you can check if the high-risk security posture of the device caused any access issues.