Security matrix for SubTemplate is a table that consists of SubTemplates grouped with one or more attributes of the Identity, which mostly consist of organizational attributes.
Security matrix for SubTemplate is a table that consists of SubTemplates grouped with one or more attributes of the Identity, which mostly consist of organizational attributes.
A mapping must be established between the Person Identity attributes and the SubTemplate security matrix attributes, in order to group the SubTemplate with one or more attributes of the Identity.
This section describes the steps to define such mappings in One Identity Manager.
To define the column mappings between the Person Identity and the Security Matrix for SubTemplate follow the below mentioned steps:
Select the Person column and corresponding Security Matrix column from the respective drop downs for the mapping.
NOTE: The Epic SubTemplate security matrix has a maximum of ten Properties that can be mapped with the Person Identity. The security matrix will always apply.
SubTemplates can be assigned automatically to an Epic user account via SecurityMatrix.
In order to achieve this, SeurityMatrix must be imported into One Identity Manager.
On subsequent changes to the security matrix the updates to the matrix must be imported in order to have the Epic user account to SubTemplate assignments updated.
The SeurityMatrix can be imported using these methods
The SecurityMatrix for SubTemplate can be imported into OneIdentity Manager using a SecurityMatrix csv file.
The csv file is imported into One Identity Manager using a CSV synchronization project.
This project provides a CSV synchronization workflow which imports the SecurityMatrixSubTemplate into One Identity Manager.
SubTemplate assignments are setup in the file named SecurityMatrixSubTemplate.csv.
The names of the columns in this file are
Enter the values mentioned in the following table in the corresponding columns of the csv file
Columns in the csv file | Values |
Property01 to Property10 |
Full name of the One Identity Manager Organization or Business role NOTE: Property01 to Property10 represent the different possible One Identity Manager Built-in Organization or Business role or Identity Attributes like Title. Out of box only one business role assignment is supported that is mapped to the value entered in UID_Org in the person table. |
SubTemplateID |
SubTemplate External ID |
SubTemplateNumber | The SubTemplateNumber and the SubTemplateID form a unique identifier for the Property Columns specified. |
After the Security Matrix CSV files has been setup, the synchronization project can be created using the below steps.
To create a synchronization project
NOTE: A sample CSV file can be found in the Miscellaneous folder under the EPC module
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center