You can use the Web Portal to manage system roles.
You can use the Web Portal to manage system roles.
You can display any of the system roles and their details.
To display system roles
In the menu bar click Data administration > Data Explorer.
In the navigation, click Application roles.
This opens the System Roles page and displays all the System roles.
(Optional) To display details of a system role, click the system role.
You can create new system roles.
Other properties (such as, memberships, entitlements, and so on) can be defined later during editing.
To create a system role
In the menu bar click Data administration > Data Explorer.
In the navigation, click Application roles.
On the System Roles page, click  Create system role.
In the Create System Role pane, enter the main data of the system role in the respective fields.
| Property | Description | 
|---|---|
| System role | Enter a full, descriptive name for the system role. | 
| Display name | Enter a name for displaying the system role in the One Identity Manager tools. | 
| Internal product name | Enter a company internal name for the system role. | 
| System role type | Select the role type of the system role. The system role type specifies which type of company resources make up the system role. | 
| Service item | Shows you the associated service item. | 
| System role manager | Click Change and select the identity responsible for the system role. This identity can edit the system role's main data and be used as an attestor for system role properties. If the system role can be requested in the IT Shop, the manager will automatically be a member of the application role for product owners assigned the service item. | 
| Comment | Enter a comment for the system role. | 
| IT shop | Select the check box if the system role can also be requested through the IT Shop. This system role can be requested by identities through the Web Portal and allocated by defined approval processes. The system role can still be assigned directly to identities and hierarchical roles. For more information about IT Shop, see the One Identity Manager IT Shop Administration Guide. | 
| Only use in IT Shop | Select the check box if the system role can only be requested through the IT Shop. This system role can be requested by identities through the Web Portal and allocated by defined approval processes. The system role may not be assigned directly to hierarchical roles. | 
Click Create.
You can display and edit the business roles' main data.
To display and edit a system role's main data
In the menu bar click Data administration > Data Explorer.
In the navigation of the Data Explorer, click System roles.
On the System Roles page, click the system role whose main data you want to display.
In the Edit System Role pane.
| Property | Description | 
|---|---|
| System role | Enter a full, descriptive name for the system role. | 
| Display name | Enter a name for displaying the system role in the One Identity Manager tools. | 
| Internal product name | Enter a company internal name for the system role. | 
| System role type | Select the role type of the system role. The system role type specifies which type of company resources make up the system role. | 
| Service item | Shows you the associated service item. | 
| System role manager | Click Change and select the identity responsible for the system role. This identity can edit the system role's main data and be used as an attestor for system role properties. If the system role can be requested in the IT Shop, the manager will automatically be a member of the application role for product owners assigned the service item. | 
| Comment | Enter a comment for the system role. | 
| IT shop | Select the check box if the system role can also be requested through the IT Shop. This system role can be requested by identities through the Web Portal and allocated by defined approval processes. The system role can still be assigned directly to identities and hierarchical roles. For more information about IT Shop, see the One Identity Manager IT Shop Administration Guide. | 
| Only use in IT Shop | Select the check box if the system role can only be requested through the IT Shop. This system role can be requested by identities through the Web Portal and allocated by defined approval processes. The system role may not be assigned directly to hierarchical roles. | 
Click Save.
© 2025 One Identity LLC. ALL RIGHTS RESERVED. 이용 약관 개인정보 보호정책 쿠키 기본 설정 센터