Introduction
This role can be used on top of the Organization Unit Roles and extends permissions for Admin personell to reset passwords as well as set multi factor authentication.
Assigning this role to a Core Identity within the context it’s own Core Identity grants the user the following permissions.
Data Access Permissions
Entity | Permission | Context | Description |
|---|---|---|---|
User | Read / Update | None | Read and update User Information in order to set multi factor authentication |
Identity | Read / Update | None | Read and update Identities |
Identity Type | Read | None | Read Identity Type and the defined mappings including the attributes. |
Identity Attribute Value | Read / Update | None | Read and Update Attribute Values on an Identity |
System Identity Type Attribute | Read | None | |
Identity Provisioning Configuration | Read | None | |
Identity Provisioning Configruation Attribute Mapping | Read | None |
View Permissions
View | Description |
|---|---|
My CoWorkers | Gives view access to the ORGANISATION - My CoWorkers view |
Core Identities | Gives view access to the ADMINISTRATION - Identity Management - Core Identities view |
Identities | Gives view access to the ADMINISTRATION - Identity Management - Core Identities view |
Identity CoreOne Suite Account Details Tab | Can see the details of the CoreOne Account tab |
Identity CoreOne Suite Account Details Tab Update | Can update the CoreOne Account |
Identity Account Action Execution Access | Allows to have the password changed or resetted on the Identity |
Identity Details Two Factor Authentication | Allows to see the MFA Section of an Identity |
Identity Details Two Factor Authentication Edit | Allows to change MFA |