The
action on the tab of the Identity Manager user interface allows you to create a new role or modify or delete an existing role.NOTE:You cannot use this action to create new or delete existing system roles. You can use it to modify system roles.
What you can see and do on this page depends on your security role, as described in Table 17-1.
Table 17-1 Security Role Capabilities
Click
in the list of actions.Click
.The User Application prompts you to provide a Table 17-2, Role Details.
in the section of the Manage Roles page. For more information on each of the fields in this section, seeNavigate to Table 17-3, Approval Details.
, and complete the fields as described inClick
to make your changes permanent.Click
in the list of actions.To find the role whose details you want to modify, use the Common User Actions.
or the tool to select the constraint. For details on using the and tools, seeWhen you select the role you want from the list, the lookup page closes and displays the
and for the selected role.The Manage Roles page displays the name of the role that is currently selected in the
section.HINT:The
link provides quick way access to the page. If you have selected a role, it displays the contents of the selected role for editing.To delete the currently selected role, click
.For more information on the role details you can modify, see Table 17-2, Role Details.
For more information on the Approval Details you can modify, see Table 17-3, Approval Details.
After you complete the changes, click
.Table 17-2 Role Details
Field |
Description |
---|---|
|
The text used when the role name displays in the User Application. You can translate this name in any of the user application’s supported languages. For more information, see Table 1-1, Common Buttons. |
|
The text used when the role description displays in the User Application. Like the Role Name, you can translate it to any of the user application’s supported languages. For more information, see Table 1-1, Common Buttons. |
|
(Read-only when modifying a role.) Choose a role level from the drop-down list. Role levels are defined using the Designer for Identity Manager Role Configuration editor. For more information about Role levels, see Section 14.1, About the Roles Tab. |
|
(Read-only when modifying a role.) The location for the role objects in the driver. Role containers reside under role levels. The user application shows only the role containers that reside under the role level that you choose. You can create a role either directly in a role level, or in a container within the role level. Specifying the role container is optional. |
|
A user who is designated as the owner of the role definition. When you generate reports against the Role Catalog, you can filter the report based on the role owner. The role owner does not automatically have the authorization to administer changes to a role definition. |
|
Allow you to categorize roles for role organization. Categories are used for filtering lists of roles. Categories are multi-select. |
Table 17-3 Approval Details