The One Identity Manager provides the processing status by default. This processing status is used in the approval steps of the default approval workflow.
To display the default processing status
Role classes form the basis for mapping One Identity Manager structures in the IT Shop. The following role classes are available by default in the One Identity Manager:
Use role classes to specify which company resources can be requested through the IT Shop. At the same time, you decide which company resources may be assigned as products to shelves and IT Shop templates.
The following options define which company resources may be assigned to IT Shop structures and IT Shop templates:
This option specifies whether assignments of respective company resources are allowed in general.
This option specifies whether respective company resources can be directly assigned.
|
Note: Company resources are always assigned directly to shelves and IT Shop templates. Therefore, always enable and disable both options. |
To configure assignment to IT Shop structures and IT Shop templates
- AND -
Use the column Allow direct assignments to specify whether a direct assignment is allowed.
|
NOTE: You can only disable the options if there are no assignments of the respective objects to IT Shop structures or IT Shop templates. |
Installed Module: | Attestation Module |
In One Identity Manager you can assign employees to IT Shop structures (shelves, shops, shopping centers, service items, service categories and shelf templates) who can be brought in as attestors in attestation cases when the approval workflow is set up appropriately. To do this, assign the IT Shop structures to application roles for attestors. Assign employees to this application role that are authorized to attest requests or other data stored in the One Identity Manager.
A default application role for attestors is available in One Identity Manager. You may create other application roles as required.
User | Task | ||
---|---|---|---|
Attestors for IT Shop |
Attestors must be assigned to the application role Request & Fulfillment | IT Shop | Attestors. Users with this application role:
|
To edit attestors
- OR -
Select an application role in the result list. Select Change master data in the task view.
- OR -
Click in the result list toolbar.
Property | Value |
---|---|
Parent application role | Assign the application role Identity & Access Governance | IT Shop | Attestors or a child application role. |
- OR -
Remove employees from Remove assignments.
Employees that are approvers in approval processes for requesting service items can be assigned to these service items. To do this, assign a service item or a service category to an application for Product owners. Assign this application role to employees who are authorized to approve requests in the IT Shop and to edit service item or service category data..
A default application role for product owners is available in One Identity Manager. You may create other application roles as required.
User | Task |
---|---|
Product owners |
The product owners must be assigned to the application roles Request & Fulfillment | IT Shop | Product owners or an application role below that. Users with this application role:
|
To edit product owners
- OR -
Select an application role in the result list. Select Change master data in the task view.
- OR -
Click in the result list toolbar.
Property | Description |
---|---|
Parent application role | Assign the application role Request & Fulfillment | IT Shop | Product owner or a child application role. |
- OR -
Remove employees from Remove assignments.
© 2023 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy