User Groups are seeded (available out-of-the-box) by PFTCS. Customers can also create new groups in IDCS. After groups are created, they are synced from IDCS to PFTCS. Groups are mapped to roles using PFTCS by the same user that was created using IDCS.
To create a User Group, follow these steps:
1. Login to the IDCS Admin Console.
2. Click the Groups tile.
The list of available groups are displayed.
3. To create a new group, click Add.
4. Enter the Group name, Description and click the Next button on the bottom of the page to assign the user to the group.
5. Click the Finish button to complete the process.
To map Roles to the User Group, perform the following steps:
1. Log in to the PBSM Application and click on the Admin Console.
NOTE
User that was mapped to group in IDCS must be used to login to Admin Console.
2. Navigate to Identity management under the Admin Console tab.
3. Create Role
using add icon on the Roles Management 
.
4. Enter Role Code, Role Name and save the definition.
5. Click on groups management and search for the group name created in IDCS Portal.
It might take a few minutes for group names to appear in the Admin Console.
6. Click on the user group and click on New Mapping under the Mapped Roles tab.
7. Search for role names created in Roles Management and map each role by clicking on New Mapping.
8. The mapped role can be authorized using the Authorization View.
Authorization can only be performed by the user login which is mapped to the Authorization Role.
A User group created in IDCS Portal has been successfully mapped to a Role created in the Admin Console.
If you are an Administrator and want to map a User to a User Group, log in to IDCS and follow these steps:
1. Select the User Name in the Users Summary Page.
2. Select Mapped Groups.
3. Select the User Group Name.
NOTE
To select a User Group, select the check box corresponding to the User Group. To select all User Groups displayed on the page, select the check box marked Select All.
4. Click New Mapping to map the User to the selected User Group.
OR
Click Unmap to remove the User Group-Role Mapping.
If the Unmap action requires authorization, see the Unmap User from Groups section for details.
NOTE
User-Group mapping changes from IDCS will take some time to sync with the PFTCS. If these changes are made during the active user session, then it will be reflected on the next login.
ATTENTION:
After a user sign into Profitability Management Cloud Service (PFTCS), the User to User-Group Mapping created in the IDCS Console will onboard into the Master and Mapping Tables. If you unmap a User from a Group in the Admin Console, navigate to the associated Console and open the Assign User to Groups Window. Deselect the User corresponding to the User Group and click Finish. This is a mandatory step to complete the Unmapping Process.
For more information, refer Unmap User from Groups.
After you click New Mapping, the list of User Groups you can map the user to appears in the Available Groups Summary Page.
5. Select a User Group.
NOTE
To select a User Group, select the check box corresponding to the User Group. To select all User Groups displayed on the page, select the check box marked Select All.
If the logged-in user has both Administration and Authorization Entitlements, an Authorization View Toggle Button is available. Enable this button to complete the Authorization Process.
6. Click Map.
If you are an authorizer and want to authorize a mapping, follow these steps:
7. In Mapped Groups, select the User Group Name.
NOTE
To select a User Group, select the check box corresponding to the User Group. To select all User Groups displayed on the page, select the check box marked Select All.
8. Click Authorize to authorize the User and User Group Mapping.
OR
Click Reject to cancel the Authorization Request.
To authorize the unmapping of a User to a User Group, log in to IDCS and follow these steps:
1. Click Unmapped Groups.
2. Click the User Group Name to select the User Group.
3. Click Authorize to authorize the unmapping.
OR
Click Reject to cancel the Authorization Request.
