立即与支持人员聊天
与支持团队交流

Identity Manager 8.2.1 - Administration Guide for Connecting to a Universal Cloud Interface

Managing Universal Cloud Interface environments Synchronizing a cloud application in the Universal Cloud Interface Provisioning object changes Managing cloud user accounts and employees Managing memberships in cloud groups Login information for cloud user accounts Mapping cloud objects in One Identity Manager
Cloud target systems Container structures Cloud user accounts Cloud groups Cloud system entitlements Cloud permissions controls Reports about objects in cloud target systems
Handling cloud objects in the Web Portal Basic data for managing a Universal Cloud Interface environment Configuration parameters for managing cloud target systems Default project template for cloud applications in the Universal Cloud Interface

General main data for cloud groups

Enter the following main data of a group.

Table 35: Entering main data of a group

Property

Description

Name

Name of the group.

Container

Container in which to create the group.

Target system

The group's cloud target system

Distinguished name

Distinguished name of the group.

Display name

The display name is used to display the group in the One Identity Manager tools user interface.

Group name

Additional name for the group.

Email address

Group's email address

Account manager

Manager responsible for the group.

To specify an account manager

  1. Click next to the field.
  2. In the Table menu, select the table that maps the account manager.
  3. In the Account manager menu, select the manager.
  4. Click OK.

IT Shop

 

Specifies whether the group can be requested through the IT Shop. If this option is set, the group can be requested by the employees through the Web Portal and distributed with a defined approval process. The group can still be assigned directly to hierarchical roles.

For more information, see the One Identity Manager IT Shop Administration Guide.

Only for use in IT Shop

 

Specifies whether the group can only be requested through the IT Shop. If this option is set, the group can be requested by the employees through the Web Portal and distributed with a defined approval process. Direct assignment of the group to hierarchical roles or user accounts is not permitted.

Service item

 Service item data for requesting the group through the IT Shop.

Risk index

Value for evaluating the risk of assigning the group to user accounts. Set a value in the range 0 to 1. This input field is only visible if the QER | CalculateRiskIndex configuration parameter is activated.

For more information, see the One Identity Manager Risk Assessment Administration Guide.

Category

 Categories for group inheritance. Groups can be selectively inherited by user accounts. To do this, groups and user accounts are divided into categories. Select one or more categories from the menu.

For more information, see the One Identity Manager Target System Base Module Administration Guide.

Description

Text field for additional explanation.

Group type

Name of the group type. This is only required if different group types are recognized in the cloud application.

Resource type

Type of resource, for example, Group.

Detailed information about this topic

User-defined main data for cloud groups

You can find customized data for a group on the Custom tab.

Table 36: User-defined main data of a group
Property Description

Spare field no. 01- Spare field no. 05

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Spare date no. 01- Spare date no. 03

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Spare text no. 01- Spare text no. 05

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Spare option no. 01 - Spare option no. 05

Additional company-specific information. Use the Designer to customize display names, formats, and templates for the input fields.

Adding cloud groups to cloud groups

Use this task to add a group to another group. This means that the groups can be hierarchically structured.

To assign groups directly to a group as members

  1. In the Manager, select the Cloud Target Systems > <target system> > Groups category.

  2. Select the group in the result list.

  3. Select the Assign groups category.

  4. Select the Has members tab.

  5. Assign child groups in Add assignments.

    TIP: In the Remove assignments pane, you can remove the assignment of groups.

    To remove an assignment

    • Select the group and double-click .

  6. Save the changes.

To add a group as a member of other groups

  1. In the Manager, select the Cloud Target Systems > <target system> > Groups category.

  2. Select the group in the result list.

  3. Select the Assign groups task.

  4. Select the Is member of tab.

  5. In the Add assignments pane, assign parent groups.

    TIP: In the Remove assignments pane, you can remove the assignment of groups.

    To remove an assignment

    • Select the group and double-click .

  6. Save the changes.
Related topics

Assigning permissions controls to cloud groups

Use this task to assign permissions controls to groups.

To assign permissions controls to a group

  1. In the Manager, select the Cloud Target Systems > <target system> > Groups category.

  2. Select the group in the result list.

  3. Select the Assign permissions controls task.

  4. In the Add assignments pane, assign permissions controls.

    TIP: In the Remove Assignments pane, you can remove the assigned permission controls.

    To remove an assignment

    • Select the permissions control and double-click .

  5. Save the changes.
Related topics
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级