Current sets of filters can be saved as a new report using the menu [Report] > [Create new report]. Reports can be exported to HTML or CSV files or can be reloaded within the program to change the filters or review results. There are two options for HTML: a simple HTML table and an option which includes search, paging and sorting options.
Report types
Permission Analyzer supports nine report types, each of which displays search results differently:
- Folders/files and the sum of their permissions
- Folders/files and their Access Control List, as they appear on the file system
- Folders/files and the ACL with expanded groups showing direct members and their effective permissions
- Folders/files and the ACL with expanded groups showing nested members and their effective permissions
- Users and groups and all their explicit permissions. This report is laid down per user/group instead of directory/file. For each user or group the directories and explicit rights are displayed, including permissions from nested group memberships.
- Groups that match the filter criteria and their direct members
- Groups that match the filter criteria and their nested members
- Groups that have permissions in the folder tree and their direct members
- Groups that have permissions in the folder tree and their nested members
Some report types show a relatively extensive amount of information per user and group. That’s why we recommend making your filters as specific and targeted as possible, to exclude any unnecessary information. This prevents reports from being crowded with irrelevant information.
Tip: put a placeholder in the Target file path to include the current date in the path:
c:\permission reports\[date:yyy-MM-dd]_report.html. This will preserve old report files. See Java date formats.
A report can be configured with an e-mail address, allowing it to be sent to that address at every export opportunity. An SMTP server, however, must be configured to accommodate the address and can be set up in the application settings. The option will also allow you to indicate whether you want the report to be included as an attachment and to include a message in the e-mail. The e-mail template may contain the following fields: [report_name], [report_path], [report_description] en [report_threshold].
Report templates
You will also be able to use modified templates to generate the report. Permission Analyzer comes with a number of default templates for HTML and CSV, which can be modified according to your specifications. The templates are located in <application dir>\plugins\Permission_Analyzer_2.xxxx.jar – the file can be opened with any ZIP application. Here are examples of the default HTML template for files and the sum of permissions or the CSV template for files and their ACL’s.
Filter selections
If you have selected a filter selection as a filter, then that selection will show up as an option when generating the report. Using the selection will create a reference to the filter selection within the report and any modifications to the filter selection will result in all reports automatically applying the modified selection. Unchecking the option in the report will result in the report saving a copy of the filters and not change according to the filter selection.
Running reports automatically
Use Permission Analyzer to run reports automatically using the following parameters:
- -report “myReport” “myReport2”: run one or more reports by name.
- -allReports: run all reports.
Permission Analyzer will close automatically after all reports have been exported. See Scheduling jobs feature for more command-line options.
Folders/files and the sum of their permissions
Folders/files and their Access Control List
Folders/files and the ACL with expanded groups showing direct members and their effective permissions
Users and groups and all their explicit permissions
Groups and members
Manage reports
A list of all reports can be requesting via the menu: [Report] > [Manage Report]. You will subsequently be able to review and modify all reports, run them manually or input them into the application.