2.3.3 Identity Management

Using Identity Management, Administrators can manage fine-grained and coarse-grained entitlements that consist of fewer functions than fine-grained entitlements) entitlements. Authorizers can authorize the entitlement mappings. The components are as follows:

  • Users: A user is a person who has access to and can perform specific actions based on the user group or groups they are mapped to. Before you can map a user to a user group, your Administrator must have created and authorized the user. After the user is authorized, they are added in the Users Summary page. Click Usersusers_icon to view the list of available users in the Users Summary page.
  • Groups: Groups are a set of users that can perform specific activities. For example, the administrator role performs administrative activities. Any user who belongs to a specific user group can access the roles mapped to that user group. Click Addadd_icon to add a user group or click Groupsgroups_icon to view the list of user groups in the Groups Summary page.
  • Roles: Roles are a set of functions grouped together and having specific privileges. Any user who belongs to a specific role can access functions mapped to the role. Click Addadd_icon to add a role or click Rolesroles_icon to view the list of roles in the Roles Summary page.
  • Folders: Folders are used to control access rights on defined list of objects. They are mapped to a specific Information Domain, Click Foldersfolders_icon , to view the list of folders and edit the access rights, in the Folders Summary page.
  • Functions: Functions enable users to perform a specific activity. Any user who belongs to a specific function can access the folders mapped to the function. Click Functionsfunctions_icon to view the list of functions in the Functions Summary page.

Note:

Only those user groups and roles which are authorized are displayed in the Groups Summary page and Roles Summary page, respectively.