Employees obtain a system user directly from their master data or dynamically through their One Identity Manager application roles.
To display which employees are assigned to a system user
NOTE: You cannot change the assignments in this view.
NOTE: If no role-based logins of employees who use dynamic system users are performed for some time, you should delete the dynamic system users for performance reasons. A new dynamic system user is created during the next role-based employee login.
To delete system users
If the configuration parameter is enabled, system users whose retention period has expired are deleted from the database as part of the daily maintenance tasks.
You can edit permissions in the Designer using the Permissions Editor. You can also simulate the permissions for the individual system users in Permissions Editor.
With the Permissions Editor you can:
Assign permissions for custom tables and columns to custom permissions groups
Assign permissions for predefined tables and columns in the One Identity Manager schema to custom permissions groups
Assign permissions for custom tables and columns to predefined permissions groups
The permissions for predefined permission groups to predefined tables and columns in the One Identity Manager schema cannot be changed.
For custom schema extensions, use the Schema Extension program, specify a permissions group with read and write permissions as well as a permissions group with read permissions only. This make initial access to the schema extensions possible with One Identity Manager administration tools.
To display all permissions for a permission group
In the Permissions Editor toolbar in the Permissions group menu, select the permissions group for which you want to display permissions.
The tables and columns of the One Identity Manager schema and the permissions of the selected permissions group are displayed in the upper area of Permissions Editor. Use the following Permissions Editor options to adjust the layout.
To limit the display of the tables, use the Show system tables, Show non-system tables and Show all tables menu items in the Options menu. Alternatively, use the Define filter or Manage filters menu items to define your own user-defined filters for displaying the tables and columns.
For detailed information about creating user-defined filters in Designer, see the One Identity Manager User Guide for One Identity Manager Tools User Interface.