4 Identity Management
Using Identity Management, Administrators can manage fine-grained and coarse-grained entitlements that consist of fewer functions than fine-grained entitlements) entitlements. Authorizers can authorize the entitlement mappings. The components are as follows:
- Users: A user is a person who has access to and can perform specific actions
based on the user group or groups they are mapped to. Before you can map a user to a
user group, your Administrator must have created and authorized the user. After the
user is authorized, they are added in the Users Summary page. Click
Users
to view the list of available users in the Users Summary page.
- Groups: Groups are a set of users that can perform specific activities. For
example, the administrator role performs administrative activities. Any user who
belongs to a specific user group can access the roles mapped to that user group.
Click Add
to add a user group or click Groups
to view the list of user groups in the Groups Summary page.
- Roles: Roles are a set of functions grouped together and having specific
privileges. Any user who belongs to a specific role can access functions mapped to
the role. Click Add
to add a role or click Roles
to view the list of roles in the Roles Summary page.
- Folders: Folders are used to control access rights on defined list of
objects. They are mapped to a specific Information Domain, Click
Folders
, to view the list of folders and edit the access rights, in the Folders Summary page.
- Functions: Functions enable users to perform a specific activity. Any user
who belongs to a specific function can access the folders mapped to the function.
Click Functions
to view the list of functions in the Functions Summary page.
Note:
Only those user groups and roles which are authorized are displayed in the Groups Summary page and Roles Summary page, respectively.