1. Security Guide
  2. Retail Predictive Application Server Cloud Edition Security Features
  3. Client Tier Security
  4. Factors Affecting Security
  5. Authorization
  6. Authorization Within an RPASCE UI Application

Authorization Within an RPASCE UI Application

Once a user has been granted both the application authentication role and the administrator role in IAM, that user can log into the system as an administrative user.

The administrative user can log in to the application and see the functional groups within the application. Various application features such as workbook templates can be assigned to these functional groups. (We call this RPASCE capability “Security Administration”). He or she can then log in to IAM Console and assign users to the like-named IAM groups.

This will allow users to access those application features that he or she has been authorized to access, based on the memberships of functional groups (indirectly through their membership of the like-named IAM groups), and the access control established in the Security Administration process.

For more information on users, user groups, and granting privileges, see Compute Tier Security.