Coarse-Grained User Authorization (Default)
With course-grained user authorization, Just-In-Time Provisioning creates users with two authorization levels:
-
Security and Access Administrator.
-
Users with an administrative role in the Identity Domain are provisioned using aSecurity Administrator Template User. The user gains the access to all transactions and services related to application security and user authorization setup
-
-
Authenticated User
-
Users with no administrative role(s) in the Identity Domain are provisioned using a Minimum Access Template User. The user gains access to My Preferences page only. The security and access administrator completes the authorization and access setup manually.
-
No additional configuration effort is needed if your implementation chose to follow this approach. The scope of the actual security access for both Security Administrator and Authenticated User is customizable. Refer to Override Default Access for more information.