To obtain an overview of a SharePoint role
- Select the SharePoint > Roles category.
- Select the role in the result list.
- Select the SharePoint role overview task.
To obtain an overview of a SharePoint role
The behavior described under Effectiveness of group memberships can also be used for SharePoint roles.
The effect of the assignments is mapped in the SPSUserHasSPSRLAssign and BaseTreeHasSPSRLAssign tables though the column XIsInEffect.
The QER | Structures | Inherite | GroupExclusion configuration parameter is set.
In the Designer, set the configuration parameter and compile the database.
NOTE: If you disable the configuration parameter at a later date, model components and scripts that are not longer required, are disabled. SQL procedures and triggers are still carried out. For more information about the behavior of preprocessor relevant configuration parameters and conditional compiling, see the One Identity Manager Configuration Guide.
Mutually exclusive SharePoint roles belong to the same site collection.
To exclude SharePoint roles
- OR -
In the Remove assignments pane, remove the roles that no longer exclude each other.
Extended properties are meta objects, such as operating codes, cost codes, or cost accounting areas that cannot be mapped directly in One Identity Manager.
To specify extended properties for a SharePoint role
In the Manager, select the SharePoint > Roles category.
Select the role in the result list.
Select the Assign extended properties task.
In the Add assignments pane, assign extended properties.
TIP: In the Remove assignments pane, you can remove assigned extended properties.
To remove an assignment
Select the extended property and double-click .
For more information about setting up extended properties, see the One Identity Manager Identity Management Base Module Administration Guide.
You cannot delete SharePoint roles in the Manager. They are deleted by the DBQueue Processor when the associated permission level is deleted.
To delete a permission level
If deferred deletion is configured, the permission level is marked for deletion and finally deleted after the deferred deletion period has expired. During this period, the permission level can be restored. Permission levels with deferred deletion of 0 days are deleted immediately.
To restore a permission level
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center