IAM Administrator Roles
Identity and Access Management (IAM) administrator roles in OPERA Cloud Identity Management provide capabilities in OPERA Cloud Identity Management portal for managing users, groups, user group memberships and managing Oracle support access.
IAM administrator roles can be used for controlling access to capabilities only within OPERA Cloud Identity Management Portal.
The IAM administrator roles available in OPERA Cloud Identity Management are as follows:
-
IAMADMIN
-
IAMUSERMANAGER
-
IAMHELPDESK
-
IAMSUPPORTMANAGER
-
IAMAUDITOR
IAM administrator roles are always associated to an enterprise, chain, or a property where scope
of user and group data can be managed by members of that IAM. The Administrator role in the OPERA
Cloud Identity Management Portal is always based on the associated enterprise, chain, or
property.
Table 3-1 Administration Capabilities in OPERA Cloud Identity Management Portal
| IAMADMIN | IAMUSERMANAGER | IAMHELPDESK | IAMSUPPORTMANAGER | IAMAUDITOR | |
|---|---|---|---|---|---|
| View User | Yes | Yes | Yes | No | No |
| Create User and Delete User | Yes | No | No | No | No |
| Activate/ Deactivate User and Edit User | Yes | Yes | No | No | No |
| Unlock User/ Reset Factors/ Resend Invitation/ Reset Password | Yes | Yes | Yes | No | No |
| Manage User Group Membership | Yes | Yes | No | No | No |
| View Groups | Yes | Yes | Yes | No | No |
| Create Custom Groups and Delete Custom Groups | Yes | No | No | No | No |
| Copy Groups from one location to another | Yes | No | No | No | No |
| Manage Admin Roles | Yes | No | No | No | No |
| Manage Oracle Support User Access | Yes | No | No | Yes | No |
| Manage Reports | Yes | No | No | No | Yes |
Note:
The IAMADMIN Administrator Role is automatically assigned for the ENTERPRISE-ADMIN, CHAIN-ADMIN or PROPERTY-ADMIN group member for that respective chain or property.
Parent topic: Managing IAM Administrator Roles