サポートと今すぐチャット
サポートとのチャット

Identity Manager On Demand - Starling Edition Hosted - Web Portal User Guide

General tips and getting started Managing reports Requests
Setting up and configuring request functions Requesting products Managing the Saved for Later list Pending requests Displaying request history Displaying archived requests Resubmitting requests Canceling requests Renewing products with limit validity periods Unsubscribing products Displaying requests Undoing approvals Managing request inquiries directed at you
Attestation
Managing attestation inquiries directed at you Managing attestations Displaying attestation history My attestation cases Undo attestation case approvals Pending attestations
Compliance Managing risk index functions Responsibilities
Managing task delegations Ownerships My responsibilities
Managing my departments Managing my application roles Managing my devices Managing my business roles Managing my identities Managing my cost centers Managing my multi-request resources Managing my multi requestable/unsubscribable resources Managing my resources Managing my software applications Managing my locations Managing my system entitlements Managing my system roles Managing my assignment resources
Managing data
Managing departments Managing user accounts Managing business roles Managing identities Managing cost centers Managing multi-request resources Managing multi requestable/unsubscribable resources Managing resources Managing locations Managing system entitlements Managing system roles Managing assignment resources
Opening other web applications Managing tickets Appendix: Attestation conditions and approval policies from attestation procedures

Managing my application role memberships

As soon as an identity is assigned to an application role, the identity becomes a member of the application role.

Detailed information about this topic

Displaying memberships in my application roles

You can display identities that are assigned application roles for which you are responsible.

To display identities that are assigned an application role

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Application roles.

  3. On the Application Roles page, click the application role whose memberships you want to display.

  4. In the Edit Application role pane, click the Memberships tab.

  5. (Optional) To display all members who were originally assigned through a dynamic role but have been excluded, click Excluded members.

Analyzing assignments to my application roles

You can display how an application role assignment under your responsibility came about by displaying an assignment analysis for the corresponding membership.

To display the assignment analysis for a membership

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Application roles.

  3. On the Application Roles page, click the application role whose memberships you want to display.

  4. In the Edit Application role pane, click the Memberships tab.

  5. On the Memberships tab, click Secondary memberships.

  6. Click the membership to display its assignment analysis.

Assigning identities to my application roles

You can assign identities to application roles for which you are responsible.

The following assignment options are available:

To assign an identity to a application role using a request

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Application roles.

  3. On the Application Roles page, click the application role to which you want to assign an identity.

  4. In the Edit Application Role pane, click the Memberships tab.

  5. On the Memberships tab, click Request memberships.

  6. In the Request Memberships pane, next to the identity to which you want to assign the application role, select the check box.

  7. Click Request memberships.

  8. Close the Edit Application Role pane.

  9. In the menu bar, click Requests > Shopping cart.

  10. On the Shopping Cart page, click Submit.

    Once the request has been granted approval, the identity is assigned to the application role.

To add members automatically through a dynamic role

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Application roles.

  3. On the Application Roles page, click the application role for which you want to create a dynamic role.

  4. In the Edit Application Role pane, click the Memberships tab.

  5. On the Memberships tab, click Automatic memberships.

  6. Click Create dynamic role.

  7. Use conditions to specify which identities to add over the dynamic role. Perform the following actions to do this:

    1. Click Add condition.

    2. In the Property menu, select the relevant property.

    3. In the Operator menu, select a logical operator.

    4. In the final field, specify a comparison value.

    5. (Optional) To add another condition, click Add another condition and repeat the steps.

    6. (Optional) To change the way the conditions are linked, you can toggle between And and Or by clicking the link.

    TIP: To remove a condition, click (Delete).

    For more information about customizing filter conditions, see Custom filter conditions.

  8. Click Save.

  9. (Optional) In the Calculation schedule menu, select the schedule that specifies when memberships are calculated.

  10. (Optional) To calculate memberships immediately after a relevant object is changed, select the Assignments recalculated immediately check box.

  11. Click Save.

TIP: A membership that was created through a dynamic role is labeled as Assigned by dynamic role in the memberships list.

To re-add an excluded member

  1. In the menu bar, click Responsibilities > My Responsibilities.

  2. In the navigation, click Application roles.

  3. On the Application Roles page, click the application role to which you want to re-add a member.

  4. In the Edit Application Role pane, click the Memberships tab.

  5. On the Memberships tab, click Excluded members.

  6. Select the check box next to the identity you want to add again as a member.

  7. Click Remove exclusion.

Related topics
関連ドキュメント

The document was helpful.

評価を選択

I easily found the information I needed.

評価を選択