1. Oracle WebCenter Portal Online Help
  2. Online Help Topics for WebCenter Portal Administration
  3. Administration: Security: Users and Groups

Administration: Security: Users and Groups

System administrators can manage application roles for all the users who have access to WebCenter Portal, that is, all users defined in the identity store. From the Users and Groups page, you can assign users and groups to roles, change user role assignments, and revoke roles.

Assigning Users (and Groups) to Application Roles

To assign a user (or a group of users) to a different application role:

  1. From the drop-down list:

    • Select User to grant permissions to one or more users defined in the identity store.

    • Select Group to grant permissions to a group of users.

  2. If you know the exact name of the user or group, enter the name in the text box, separating multiple names with commas.

    If you are not sure of the name you can search the identity store:

    1. Click the Find icon (Find Icon) to open the Find User (or Find Group) dialog.

    2. Enter a search term for a user or group, then click the Search icon to display users (or groups) matching your search criteria.

    3. Select one or more names from the list.

      To assign roles to multiple users or groups, Ctrl + click to select multiple names.

    4. Click OK.

  3. To assign a role, select an appropriate Role from the drop-down list for the selected users (or groups).

    Note:

    Choose Administrator only if you want to assign full, administrative privileges for WebCenter Portal.

    • If the role you want is not listed, create a new role that meets your requirements.

    • When no role is selected, the user assumes the Authenticated-User role.

  4. Click Grant Access.

    User/user group names and new role assignments appear in the table.

Note:

Group names are clickable, enabling you to drill down to see user names of the current group members.

Assigning a User to a Different Application Role

To assign a user to a different role:

  1. In the Manage Existing Grants table, scroll down to the user whose role assignment you want to modify. Only users with non-default role assignments are listed in the table.

  2. Click the Actions icon, then select Change Role from the drop-down list to open the Change Role dialog.

  3. Select roles as follows:

    • Select Administrator only to assign full, administrative privileges for WebCenter Portal.

      Administrators have the highest privilege level and can view and modify anything in WebCenter Portal so take care when assigning the Administrator role.

      Some administrative tasks are exclusive to the Administrator role, such as editing the login page, the self-registration page, and profile gallery pages.

    • Select one or more roles from the list. At least one role must be selected.

      If the role you want is not listed, create a new role that meets your requirements.

  4. Click OK.

Revoking Application Roles

To revoke application roles:

  1. In the Manage Existing Grants table, scroll down to the user from whom you want to revoke roles.

  2. Click the Actions icon:

    • Select Change Role, and deselect the application roles to revoke.

    • Select Delete Role Assignments to revoke all roles assigned to that user, and then click Delete to confirm.

    Access for that user is revoked immediately.

When you delete all the roles assigned to a particular user, the user is no longer listed on the Users and Groups page. The user remains in the identity store and still has access to WebCenter Portal through the Authenticated-User role.