Chat now with support
Chat with Support

Identity Manager 8.1.4 - Identity Management Base Module Administration Guide

Basics for mapping company structures in One Identity Manager Managing departments, cost centers, and locations Working with dynamic roles Employee administration
One Identity Manager users for employee administration Basic data for employee master data Entering employee master data Employee's central user account Employee's central password Employee's default email address Mapping multiple employee identities Disabling and deleting employees Password policies for employees Limited access to One Identity Manager Assigning company resources to employees Displaying the origin of an employee's roles and entitlements Analyzing role memberships and employee assignments Additional tasks for managing employees Determining an employee’s language Determining an employee's working hours Employee reports
Managing devices and workdesks Managing resources Setting up extended properties Configuration parameters for managing departments, cost centers, and locations Effective configuration parameters for setting up employees Configuration parameters for managing devices and workdesks

General master data for a cost center

Enter the following data for a cost center.

Table 13: General master data for a cost center
Property Description

Cost center

Cost center name.

Short name

Cost center short name.

Parent cost center

Parent of cost center in the hierarchy.

To organize cost centers hierarchically, select the parent cost center in the menu. Leave this field empty if the cost center is at the top level of the cost center hierarchy.

Role type Role types for more detailed classification.

Manager

Manager responsible for the cost center.

2nd Manager

Deputy cost center manager.

Attestors

Applications role whose members are authorized to approve attestation cases for this cost center.

To create a new application role, click . Enter the application role name and assign a parent application role.

NOTE: This property is available if the Attestation Module is installed.

Department

Department to which the cost center is primary assigned.

Location

Location to which the cost center is primary assigned.

Role approver

Application role whose members approve IT Shop requests for members of this cost center.

To create a new application role, click . Enter the application role name and assign a parent application role.

Role approver (IT)

Application role whose members approve IT Shop requests for members of this cost center.

To create a new application role, click . Enter the application role name and assign a parent application role.

Description

Text field for additional explanation.

Comment

Text field for additional explanation.

Remarks

Text field for additional explanation.

Certification status

Certification status of the cost center. You can select the following certification statuses:

  • New – The cost center was newly added to the One Identity Manager database.
  • Certified – Cost center master data was granted approval by the manager
  • Denied – Cost center master data was denied approval by the manager.
Import data source Target system or data source, from which the data set was imported.

Deactivated

Specifies whether the cost center is actively used. Set this option if the cost center is not used. This option does not have any effect on the calculation of inheritance.

Block inheritance

Specifies whether inheritance for this cost center can be discontinued. Set this option to discontinue inheritance within the cost center hierarchy.

X500 nodes

Select this option to label a cost center for exporting to an X500 schema.

Employees do not inherit

Specifies whether employee inheritance should be temporarily prevented for this cost center.

Devices do not inherit

Specifies whether device inheritance should be temporarily prevented for this cost center.

Workdesks do not inherit

Specifies whether workdesk inheritance should be temporarily prevented for this cost center.

Dynamic roles not allowed Specifies whether a dynamic role can be created for the cost center.

Spare field no. 01 ... Spare field no. 10

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Spare date no. 01 ... Spare field no. 03

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Related topics

Functional area and risk assessment

Here, you can enter values to classify the cost center, which analyzes the risk of a cost center with respect to identity audit.

Table 14: Master data of a cost center's functional area
Property Description

Country

Country. You require this to determine the employee’s language and working hours.

State

State. You require this to determine the employee’s language and working hours.

Functional area

Cost center's function area. This data is required for cost center's risk assessment.

Risk index (calculated)

A risk index is calculated for the cost center risk assessment based on assigned company resources. This input field is only visible if the QER | CalculateRiskIndex configuration parameter is set.

Transparency index

Specifies how well you can trace cost center assignments. Use the slider to enter a value between 0 and 1.

0 ... no transparency

1 ... full transparency

Max. number of rule violations

Specify how many rule violations are permitted for this cost center. The value can be evaluated when compliance rules are checked.

NOTE: This property is only available if the Compliance Rules Module is installed.
Turnover for this unit Turnover for the cost center.
Earnings for this unit Earnings for the cost center.
Related topics

Editing locations

To edit locations

  1. Select the Organizations | Locations category.
  2. Select a location in the result list. Select the Change master data task.

    - OR -

    Click in the result list.

  3. Edit the location’s master data.
  4. Save the changes.
Detailed information about this topic

General master data for a location

Enter the following data for a location.

Table 15: General master data for a location
Property Description

Location

Name of the location.

Short name

Short name of the location.

Name

Additional name for the location.

Parent location

Parent of location in the hierarchy.

To organize locations hierarchically, select the parent location in the menu. Leave this field empty if the location is at the top level of the location hierarchy.

Role type Role types for more detailed classification.

Manager

Manager responsible for the location.

2nd Manager

Assistant manager of the location.

Attestors

Applications role whose members are authorized to approve attestation cases for this location.

To create a new application role, click . Enter the application role name and assign a parent application role.

NOTE: This property is available if the Attestation Module is installed.

Department

Department to which the location is primary assigned.

Cost center

Cost center to which the location is primary assigned.

Additional remarks

Text field for additional explanation.

Role approver

Application role whose members approve IT Shop requests for members of this location.

To create a new application role, click . Enter the application role name and assign a parent application role.

Role approver (IT)

Application role whose members approve IT Shop requests for members of this location.

To create a new application role, click . Enter the application role name and assign a parent application role.

Description

Text field for additional explanation.

Comment

Text field for additional explanation.

Remarks

Text field for additional explanation.

Certification status

Certification status of the location. You can select the following certification statuses:

  • New – The location was newly added to the One Identity Manager database.
  • Certified – Location master data was granted approval by the manager.
  • Denied – Location master data was denied approval by the manager.
Import data source Target system or data source, from which the data set was imported.

Deactivated

Specifies whether the location is actively used. Set this option if the location is not used. This option does not have any effect on the calculation of inheritance.

Block inheritance

Specifies whether inheritance for this location can be discontinued. Set this option to discontinue inheritance within the location hierarchy.

X500 nodes

Select this option to label a location for exporting to an X500 schema.

Employees do not inherit

Specifies whether employee inheritance should be temporarily prevented for this location.

Devices do not inherit

Specifies whether device inheritance should be temporarily prevented for this location.

Workdesks do not inherit

Specifies whether workdesk inheritance should be temporarily prevented for this location.

Dynamic roles not allowed Specifies whether a dynamic role can be created for the location.

Spare field no. 01 ... Spare field no. 10

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Spare date no. 01 ... Spare field no. 03

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating