2.3.3 Identity Management

Using Identity Management, Administrators can manage fine-grained and coarse-grained entitlements that consist of fewer functions than fine-grained entitlements) entitlements. Authorizers can authorize the entitlement mappings. The components are as follows:

• Users: A user is a person who has access to and can perform specific actions based on the user group or groups they are mapped to. Before you can map a user to a user group, your Administrator must have created and authorized the user. After the user is authorized, they are added in the Users Summary page. Click Users to view the list of available users in the Users Summary page.
• Groups: Groups are a set of users that can perform specific activities. For example, the administrator role performs administrative activities. Any user who belongs to a specific user group can access the roles mapped to that user group. Click Add to add a user group or click Groups to view the list of user groups in the Groups Summary page.
• Roles: Roles are a set of functions grouped together and having specific privileges. Any user who belongs to a specific role can access functions mapped to the role. Click Add to add a role or click Roles to view the list of roles in the Roles Summary page.
• Folders: Folders are used to control access rights on defined list of objects. They are mapped to a specific Information Domain, Click Folders , to view the list of folders and edit the access rights, in the Folders Summary page.
• Functions: Functions enable users to perform a specific activity. Any user who belongs to a specific function can access the folders mapped to the function. Click Functions to view the list of functions in the Functions Summary page.

Note:

Only those user groups and roles which are authorized are displayed in the Groups Summary page and Roles Summary page, respectively.