This demonstrates how to add a user account to a group by using the Web Interface.
To add a user account to a group
Workflow refers to a sequence of actions that leads to the completion of a certain task. Active Roles allows administrators to configure various workflows that can be started on a scheduled basis or on user demand. This workflow type is called automation workflow. For more information, see “Automation workflow” in the Active Roles Administrator Guide.
If an automation workflow is configured so that running it on demand is allowed, then such a workflow can be run from the Web Interface.
To run an automation workflow from the Web Interface
The Web Interface prompts you for parameter values if the workflow has any parameters that need to be supplied by the user running the workflow on demand. If the workflow has no parameters that require user input, then the Web Interface starts the workflow without prompting you for parameter values.
Once you have started an automation workflow, the Web Interface opens a run history report allowing you to examine the progress of workflow execution. The report displays the workflow execution status along with information about the activities performed during workflow run. For a workflow that is in progress you have the option to cancel execution of the workflow by clicking the Terminate button.
After the workflow is completed, the report retains history information about the workflow run. For each completed run of the workflow, the report allows you to identify when and by whom the workflow was started, when the workflow was completed, and what parameter values were used.
The report also lists the workflow activities that were executed during the workflow run. For each activity, you can determine whether the activity was completed successfully or returned an error. In case of error, the report provides an error description. For activities requesting changes to directory data (for example, activities that create new objects or modify existing objects), you can examine the requested changes in detail by clicking the Operation ID number in the run history report.
To view run history of an automation workflow in the Web Interface
In the Command pane, click Run History.
By using temporal group memberships, you can manage group memberships of objects such as user or computer accounts that need to be members of particular groups for only a certain time period. This feature gives you flexibility in deciding and tracking what objects need group memberships and for how long.
This section guides you through the tasks of managing temporal group memberships in the Web Interface. If you are authorized to view and modify group membership lists, then you can add, view and remove temporal group members as well as view and modify temporal membership settings on group members.
A temporal member of a group is an object, such as a user, computer or group, scheduled to be added or removed from the group. You can add and configure temporal members using the Web Interface.
To add temporal members of a group
|
NOTE: You can make an object a temporal member of particular groups by managing the object rather than the groups. Select the object, and then choose the Member Of command. On the Member Of page, click Add. In the Select Object dialog box, find and select the groups, and specify the temporal membership settings as appropriate for your situation. |
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy