立即与支持人员聊天
与支持团队交流

Identity Manager 9.1.2 - Identity Management Base Module Administration Guide

Basics for mapping company structures in One Identity Manager Dynamic roles Departments, cost centers, and locations
One Identity Manager users for managing departments, cost centers, and locations Basic information for departments, cost centers, and locations Creating and editing departments Creating and editing cost centers Creating and editing locations Setting up IT operating data for departments, cost centers, and locations Assigning employees, devices, and workdesks to departments, cost centers, and locations Assigning company resources to departments, cost centers, and locations Creating dynamic roles for departments, cost centers, and locations Dynamic roles with incorrectly excluded employees Assign organizations Specifying inheritance exclusion for departments, cost centers, and locations Assigning extended properties to departments, cost centers, and locations Certifying departments, cost centers, and locations Reports about departments, cost centers, and locations
Employee administration
One Identity Manager users for employee administration Basic data for employee main data Employee's central user account Employee's default email address Employee's central password Mapping multiple employee identities Password policies for employees Creating and editing employees Disabling and deleting employees Deleting all employee related data Limited access to One Identity Manager Changing the certification status of employees Assigning company resources to employees Displaying the origin of employees' roles and entitlements Analyzing role memberships and employee assignments Displaying the employees overview Displaying and deleting employees' Webauthn security keys Determining the language for employees Determining employees working hours Manually assigning user accounts to employees Entering calls for employees Assigning extended properties to employees Employee reports
Managing devices and workdesks Managing resources Setting up extended properties Configuration parameters for managing departments, cost centers, and locations Configuration parameters for managing employees Configuration parameters for managing devices and workdesks

Basic data for resources

The following basic data is required for managing resources.

  • Resource types

    You can use resource types to group resources.

  • Extended properties

    Extended properties are meta objects, such as operating codes, cost codes, or cost accounting areas that cannot be mapped directly in One Identity Manager.

Detailed information about this topic

Resource types

You can use resource types to group resources.

To create or edit resource types

  1. In the Manager, select the Entitlements > Basic configuration data > Resource types category.

  2. In the result list, select an resource type and run the Change main data task.

    – OR –

    Click in the result list.

  3. Enter a name and description for the resource type.

  4. Save the changes.

Creating and editing resources

To create or edit resources

  1. In the Manager, select the Entitlements > Resources category.

  2. Select a resource in the result list and run the Change main data task.

    - OR -

    Click in the result list.

  3. Edit the resource's main data.

  4. Save the changes.
Detailed information about this topic

Main data for resources

Enter the following main data of a resource.

Table 63: Resource main data
Property Description
Resource Resource identifier.

Resource type

Resource type for grouping resources.

Service item

Service item through which you can request the resource in the IT Shop. Assign an existing service item or add a new one.

Required resource

Define the dependencies between resources. When this resource is requested or assigned, the required resource is assigned automatically.

Risk index

Value for evaluating the risk of assigning the resource to employees. Set a value in the range 0 to 1. This input field is only visible if the QER | CalculateRiskIndex configuration parameter is set.

For more information, see the One Identity Manager Risk Assessment Administration Guide.

IT Shop

Specifies whether the resource can be requested through the IT Shop. The resource can be requested by an employee through the Web Portal and distributed using a defined approval process. The resource can still be assigned directly to employees and roles outside of the IT Shop.

For more information, see the One Identity Manager IT Shop Administration Guide.

Only for use in IT Shop

Specifies whether the resource can be requested through the IT Shop. The resource can be requested by an employee through the Web Portal and distributed using a defined approval process. The resource cannot be directly assigned to roles outside the IT Shop.

For more information, see the One Identity Manager IT Shop Administration Guide.

No inheritance on security risk

Resources marked with this option are not inherited by employee who are rated as a security risk.

Description Text field for additional explanation.
Automatic assignment to employees

Specifies whether the resource is automatically assigned to all internal employees. By saving the resource, it is assigned to every employee that is not marked as external. Once a new internal employee is created, they automatically obtain this resource.

To automatically remove the resource assignment from all employees, disable this option. The resource cannot be reassigned to employees from this point on. Existing resource assignments remain intact.

Spare field no. 01 ... Spare field no. 10

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Related topics
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级