Application Role

Application role is a logical grouping of one or many enterprise roles.

It defines criteria for mapping enterprise Roles to a user defined role. One target Application may have several different Application Roles, with each one assigned a different set of privileges offering more fine-grained access.

One Enterprise Role can be mapped to many Application Roles. For example, the Enterprise Role employee (stored in LDAP-based identity store) can be mapped to the Application Role customer support member (defined in one Application) and to the Application Role IT member (defined in another Application).

Pre-Requisites

Workflow

Workflow

Features supported in application

Using this option System AdministratorClosedAdministrator is a set of individuals that administer the applicant/Affiliate entity. For example, Accountants, Authorized Signatories for organizations, Power of Attorney for individuals. can perform the following actions:

You are here How to reach here:

Administration Dashboard > Enterprise Role Transaction Mapping > Application Roles

Search Application Role

Using this option, System Administrator can search application roles based on the search criteria. Administrator can view the list of all the application roles, if the search parameters are not specified.

Field Name

Description

Application Role Name

Name of the application role.

Enterprise Role Name

Name of enterprise.

To search application role/ application roles:

  1. The Role Transaction Mapping - Application Roles screen with search results appears. Click Reset to reset the search parameters.

Search Application Roles - Search Results

Field Name

Description

Application Roles

You can view the following application role details:

  • Application Role Name
  • Application Role Display Name
  • Application Role Description
  1. Click Edit Icon. The Edit Application Roles section appears.
    OR
    Click Delete Icon. The Delete Warning message appears.
    OR
    Click the Mapping Details link. The Mapping Details section appears.
    OR
    Click the Enterprise Roles link to view the added enterprise role.

Create Application Role

Using this option System Administrator can create an application role.

To create an application role:

  1. In the Role Transaction Mapping - Application Roles screen, click Create. The Create Application Role screen appears.

Field Name

Description

Name

Name of the application role.

Display Name

Display name of the application role.

Description

Description of the application role.
  1. In the Name field, enter the name of the application role.
  2. In the Display Name field, enter the display name of the application role.
  3. In the Description field, enter the description of the application role.
  4. In the Map Enterprise Roles section, click Add. The Search Enterprise Roles And Map Them With Application Role section appears.

Field Name

Description

Enterprise Role Name

Name of the enterprise that is to be mapped to the application role.
  1. Click Search. The Map Enterprise Roles screen with search results appears.
    OR
    Click Reset to clear the search parameters.
  2. In the Map Enterprise Roles – Search Results section, select a role to be mapped and click Add Icon.
    OR
    Click Close to close the screen.
  3. The success message of adding the role appears. Click Done.
  4. The mapped enterprise role appears in Added Enterprise Roles section. Click Create.
    OR
    Click Cancel to cancel the transaction.
  5. The screen with success message appears. Click OK to close the message screen.

Note: You can delete the added enterprise role by clicking Delete.

Update Application Role

Using this option System Administrator can edit or update the details of an existing application role.

To edit an application role:

  1. Repeat step 1 and 2 of Search Application Role section.
  2. Click Edit Icon against the record which you want to edit. The Update Application Role section appears.
  1. In the Display Name field, modify the display name of the application role.
  2. In the Description field, modify the description of the application role.
  3. Click Apply.
    OR
    Click Cancel to cancel the transaction.
  4. The screen with success message appears. Click OK to close the message screen.

Note: You can also add more enterprise roles to the application role or delete the existing enterprise role as described in the Create Application Role section.

Delete Application Role

Using this option System Administrator can delete an existing application role.

To delete an application role:

  1. Repeat steps 1 and 2 of Search Application Role section.
  2. Click Delete Icon against the record which you want to delete. The Delete Warning message appears.
  1. Click Confirm.
    The Application Role screen with the successful object deletion message appears.

FAQs

ClosedWhat is the relationship between policy and a role?

Policies are defined and managed to control the access and usage of the resources. In this authorization system, policies are created based on roles. The policy consists of one or more roles.

ClosedHow many policies can I attach to a role?

You can add as many inline policies as you want to a user, role, or group.

ClosedCan I define my own (custom) roles?

Yes, you can create your roles.

Home