Table: vanta_user - Query Vanta Users using SQL
Vanta is a security and compliance platform that simplifies the complex, time-consuming process of preparing for SOC 2, ISO 27001, and other security audits. It continuously monitors a company's technical infrastructure for security vulnerabilities and non-compliance. Vanta provides a user system where each user has an ID, email, name, and role, which can be queried for identity and access management.
Table Usage Guide
The vanta_user
table provides insights into user identities within Vanta. As a security analyst or system administrator, explore user-specific details through this table, including user ID, email, name, and role. Utilize it to manage user identities and access, monitor user activities, and maintain compliance with security standards.
Important Notes
- To query the table you must set
session_id
argument in the config file (~/.steampipe/config/vanta.spc
).
Examples
Basic info
Analyze the employment status of users by using their display name and email. This can be useful for understanding the distribution of employment statuses within your user base.
select display_name, id, email, employment_statusfrom vanta_user;
select display_name, id, email, employment_statusfrom vanta_user;
List all admins
Identify instances where users have admin permissions. This could be useful for auditing purposes or to ensure that admin privileges are appropriately assigned.
select display_name, id, email, employment_statusfrom vanta_userwhere permission_level = 'Admin';
select display_name, id, email, employment_statusfrom vanta_userwhere permission_level = 'Admin';
List current employees
Discover the segments that consist of currently employed individuals. This can be useful for understanding the active workforce within your organization.
select display_name, id, email, employment_statusfrom vanta_userwhere employment_status = 'CURRENTLY_EMPLOYED';
select display_name, id, email, employment_statusfrom vanta_userwhere employment_status = 'CURRENTLY_EMPLOYED';
List inactive users
Explore which users are not currently active in your organization. This can be particularly useful for managing access controls and ensuring security compliance.
select display_name, id, email, employment_statusfrom vanta_userwhere employment_status = 'INACTIVE_EMPLOYEE';
select display_name, id, email, employment_statusfrom vanta_userwhere employment_status = 'INACTIVE_EMPLOYEE';
List users with security tasks overdue
Discover the segments that consist of users who have pending security tasks. This is crucial to identify potential security risks and ensure timely completion of these tasks.
select display_name, id, email, employment_status, 'Due ' || extract( day from ( current_timestamp - (task_status_info ->> 'dueDate') :: timestamp ) ) || ' day(s) ago.' as security_task_statusfrom vanta_userwhere task_status = 'SECURITY_TASKS_OVERDUE';
select display_name, id, email, employment_status, 'Due ' || julianday('now') - julianday(json_extract(task_status_info, '$.dueDate')) || ' day(s) ago.' as security_task_statusfrom vanta_userwhere task_status = 'SECURITY_TASKS_OVERDUE';
List current users by duration of employment
Analyze the duration of employment for your currently active users to gain insights into their tenure within your organization. This can be beneficial for HR planning, such as understanding workforce stability and planning for potential retirements or turnovers.
select display_name, employment_status, start_date :: date, round( extract( day from (current_timestamp - start_date) ) / 365, 1 ) as yearsfrom vanta_userwhere employment_status = 'CURRENTLY_EMPLOYED'order by years desc;
select display_name, employment_status, date(start_date), round(julianday('now') - julianday(start_date)) / 365.0 as yearsfrom vanta_userwhere employment_status = 'CURRENTLY_EMPLOYED'order by years desc;
Get the count of users by group
Analyze the distribution of users across different groups to understand the user composition in each group. This can be useful for managing user access and permissions, and for understanding the structure of your user base.
select role ->> 'name' as group_name, count(display_name)from vanta_usergroup by role ->> 'name';
select json_extract(role, '$.name') as group_name, count(display_name)from vanta_usergroup by json_extract(role, '$.name');
Schema for vanta_user
Name | Type | Operators | Description |
---|---|---|---|
_ctx | jsonb | Steampipe context in JSON form. | |
created_at | timestamp with time zone | The time when the user was created. | |
display_name | text | The display name of the user. | |
text | The email of the user. | ||
employment_status | text | = | The current employment status of the user. |
end_date | timestamp with time zone | The off-boarding time of the user. | |
family_name | text | The family name of the user. | |
given_name | text | The given name of the user. | |
hr_user | jsonb | Specifies the embedded HR information of the user. | |
id | text | A unique identifier of the user. | |
is_active | boolean | If true, the user is active. | |
is_from_scan | boolean | If true, the user was discovered by the security scan. | |
is_not_human | boolean | If true, the resource is not a human. | |
needs_employee_digest_reminder | boolean | If true, user will get an email digest of their incomplete security tasks. | |
organization_name | text | The name of the organization. | |
permission_level | text | The permission level of the user. | |
role | jsonb | Specifies the role information the user is member of. | |
sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
sp_ctx | jsonb | Steampipe context in JSON form. | |
start_date | timestamp with time zone | The on-boarding time of the user. | |
task_status | text | = | The security task status of the user. |
task_status_info | jsonb | Specifies the security task information of the user. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh
script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- vanta
You can pass the configuration to the command with the --config
argument:
steampipe_export_vanta --config '<your_config>' vanta_user