立即与支持人员聊天
与支持团队交流

Identity Manager 9.0 LTS - Identity Management Base Module Administration Guide

Basics for mapping company structures in One Identity Manager Dynamic roles Departments, cost centers, and locations
One Identity Manager users for managing departments, cost centers, and locations Basic information for departments, cost centers, and locations Creating and editing departments Creating and editing cost centers Creating and editing locations Setting up IT operating data for departments, cost centers, and locations Assigning employees, devices, and workdesks to departments, cost centers, and locations Assigning company resources to departments, cost centers, and locations Creating dynamic roles for departments, cost centers, and locations Dynamic roles with incorrectly excluded employees Assign organizations Specifying inheritance exclusion for departments, cost centers, and locations Assigning extended properties to departments, cost centers, and locations Reports about departments, cost centers, and locations
Employee administration
One Identity Manager users for employee administration Basic data for employee main data Employee's central user account Employee's default email address Employee's central password Mapping multiple employee identities Password policies for employees Creating and editing employees Disabling and deleting employees Deleting all employee related data Limited access to One Identity Manager Changing the certification status of employees Assigning company resources to employees Displaying the origin of employees' roles and entitlements Analyzing role memberships and employee assignments Displaying the employees overview Displaying and deleting employees' Webauthn security keys Determining the language for employees Determining employees working hours Manually assigning user accounts to employees Entering calls for employees Assigning extended properties to employees Employee reports
Managing devices and workdesks Managing resources Setting up extended properties Configuration parameters for managing departments, cost centers, and locations Configuration parameters for managing employees Configuration parameters for managing devices and workdesks

Adding employees to IT Shop custom nodes

When employees are added to a custom node they are entitled to make IT Shop requests. Access permissions to the IT Shop and the assignments allocated to them through product requests in the IT Shop are displayed on the employee’s overview. For more information, see the One Identity Manager IT Shop Administration Guide.

To add an employee to the IT Shop

  1. In the Manager, select the Employees > Employees category.

  2. Select the employee in the result list.

  3. Select the Assign IT Shop memberships task.

  4. In the Add assignments pane, assign custom nodes.

    - OR -

    In the Remove assignments pane, remove the custom nodes.

  5. Save the changes.

Assigning application roles to employees

For more information about implementing and editing application roles, see the One Identity Manager Authorization and Authentication Guide.

Assigned employees obtain all the permissions of the permission group to which the application role (or a parent application role) is assigned. In addition, employees obtain the company resources assigned to the application role.

If there are no employees directly assigned to an application role, the employees of the parent application role inherit the permissions.

NOTE: The application roles for Base roles | Everyone (Change), Base roles | Everyone (Lookup), Base roles | Employee Managers, and Base roles | Birthright Assignments are automatically assigned to employees. Do not make any manually assignments to these application roles.

To assign application to an employee

  1. In the Manager, select the Employees > Employees category.

  2. Select the employee in the result list.

  3. Select the Assign One Identity Manager application roles task.

  4. In the Add assignments pane, assign the application roles.

    TIP: In the Remove assignments pane, you can remove application role assignments.

    To remove an assignment

    • Select the application role and double-click .

  5. Save the changes.

Assigning resources directly to employees

Resources can be assigned directly or indirectly to employees. Indirect assignment is carried out by allocating employees and resources in company structures, like departments, cost centers, locations, or business roles.

To react quickly to special requests, you can assign resources directly to an employee.

To assign resources directly to an employee

  1. In the Manager, select the Employees > Employees category.

  2. Select the employee to whom the resources will be assigned, from the result list.

  3. Select the Assign resources task.

  4. In the Add assignments pane, assign resources.

    TIP: In Remove assignments, you can remove assigned resources.

    To remove an assignment

    • Select the resource and double-click .
  5. Save the changes.
Related topics

Assigning software directly to employees

NOTE: This function is only available if the Software Management Module is installed.

You can assign software directly or indirectly to employees. Indirect assignment is carried out by allocating employees and software in company structures, like departments, cost centers, locations, or business roles. For more information about working with software, see the One Identity Manager Software Management Administration Guide.

To react quickly to special requests, you can assign software directly to an employee.

To assign software directly to an employee

  1. In the Manager, select the Employees > Employees category.

  2. Select the employee to whom the software will be assigned, from the result list.

  3. Select the Assign software task.

  4. In the Add assignments pane, assign software.

    TIP: In the Remove assignments pane, you can remove assigned software.

    To remove an assignment

    • Select the software and double-click .
  5. Save the changes.
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级