3.20 Roles Details

Use the Open Roles page to display the details of the selected role and modify role information.

Element Description

Attribute

Displays the role attributes.

Hierarchy

Displays the role hierarchy information.

Access Policy

Displays the access policies assigned for the role.

Members

Displays the members assigned to the open role.

Organizations

Displays the organizations to which the open role has been published.

History

Displays all data about the open role that have been modified within a specified date range.

Note:

The History tab is displayed only when Identity Audit is enabled in the Oracle Identity Manager deployment.

View Analytics

Click View Analytics to compare the role with other existing roles to justify or reject the creation of the requested role.

Note:

When Identity Audit is enabled and if you modify any attribute or any other data, then the View Analytics button is available. This is for the request approver to compare the role before approval.

Apply

Click Apply to submit the changes.

Revert

Click to cancel the changes made to the page.

Attribute

Use the Attributes page to provide basic role information.

Element Description

Name

Enter the name of the role.

Role Namespace

Displays the role namespace details.

Display Name

Enter the display name of the role.

Role E-mail

Enter the email id of the role.

Role Description

Enter the role description.

Owned By

Click Search to select the user who will be the Role Owner.

Catalog Attributes

Element Description

Catalog

Enter the Catalog name.

Audit Objective

Enter the Audit Objective.

Risk Level

Select Risk level as, High Risk, Medium Risk, or Low Risk.

User Defined Tags

Enter user defined tags.

Approver User

Click Search to select the approver user.

Approver Role

Click Search to select the approver role.

Certifier User

Click Search to select the certifier user.

Certifier Role

Click Search to select the certifier role.

Fulfillment User

Click Search to select the fulfillment user.

Fulfillment Role

Click Search to select the fulfillment role.

Certifiable

Select to enable the role to appear in the certification.

Auditable

Select to enable the role to appear in audit.

Requestable

Select to mark the role as Requestable entity.

Hierarchy - Inherits From

Use this tab to displays the parent roles from which it inherits permissions from.

Element Description

Actions

Select the following options from the Actions menu:

  • Add: Click to add parent role.

  • Remove: Click to remove the selected role.

  • Undo: Click to undo previous action.

  • Refresh: Click to update the screen with any changes made on the (back-end) server.

View

Choose commands from the View menu to control how the columns are displayed:

  • Column: Click a column header name to quickly show or hide a single column.

  • Detach: Click to open the table in a larger window.

  • Reorder Column: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Add

Click Add to add a parent role.

Remove

Click Remove to remove a parent role that is selected.

Undo

Click to undo previous action.

Refresh

Click Refresh to update the screen with any changes made on the (back-end) server.

Detach

Click to open the table in a larger window.

Query By Example

Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Hierarchy - Add Parent Roles

Element Description

Search Role list

Select an attribute based on which you can search the Role. The attributes are Display Name, Name, Role E-mail, Role Description, or Role Namespace.

Search text box

Enter a value of the selected attribute as the search criterion.

Search

Click to perform the search and display the results in a tabular format.

Results

Displays the search result.

Select the following options from the View menu:

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

      • Then By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

      • Then By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Add Selected

Select the required role and click Add Selected to move it to Selected Roles table.

All Add

Click to add all the roles listed in the Result list.

Remove Selected

Select the required roles and click Remove Selected to deselect them from Selected Roles list.

Remove All

Click to remove all the roles listed in the Selected Roles list.

Selected Roles

Displays the list of selected roles.

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

      • Then By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

      • Then By: Role Description, Display Name, Role E-mail, Role Key, Name, or Role Category. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

Select

Click to add the Role. Roles are listed in the Inherited from Panel.

Cancel

Click to close the window without adding roles.

Hierarchy - Inherited By

Use this tab to displays the child roles which inherit permissions from this role.

Element Description

Actions

Refresh: Click to update the screen with any changes made on the (back-end) server.

View

Choose commands from the View menu to control how the columns are displayed:

  • Column: Click a column header name to quickly show or hide a single column.

  • Detach: Click to open the table in a larger window.

  • Reorder Column: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Refresh

Click Refresh to update the screen with any changes made on the (back-end) server.

Detach

Click to open the table in a larger window.

Query By Example

Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Access Policy

Use this tab to add access policies to define access rights of this role.

Element Description

Action

Select the following options from the Actions menu:

  • Add: Click to add new access policy.

  • Remove: Click to remove the selected access policy.

  • Undo: Click to undo previous action.

  • Refresh: Click to update the screen with any changes made on the (back-end) server.

View

Displays the list of selected roles.

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort:

    • Ascending

    • Descending

    • Advanced

      • Sort By: Policy Description or Policy Name. Ascending or Descending.

      • Then By: Policy Description or Policy Name. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to refine the search results by providing additional filters.

Add

Click Add to add a new access policy.

Remove

Click Remove to remove the selected access policy.

Undo

Click Undo to undo previous action.

Refresh

Click Refresh to update the screen with any changes made on the (back-end) server.

Query By Example

Click to refine the search results by providing additional filters.

Detach

Click to open the table in a larger window.

Access Policy - Add Access Policies

Elements Description

Search policy list

Select any one of the following search conditions:

  • Policy Name: To search the policy by name.

  • Policy Description: To search the policy by description.

Search text box

Enter a value of the selected attribute as the search criterion.

Search

Click the search icon to search for policy.

Results

Displays the search result.

Select the following options from the View menu:

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Policy Name or Description. Ascending or Descending.

      • Then By: Policy Name or Description. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Add Selected

Select the required capability and click Add Selected to add any access policy selected from the Result table.

Add All

Click to add all the access policies listed in the Results table.

Selected Policies

Displays the search result.

Select the following options from the View menu:

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Policy Name or Description. Ascending or Descending.

      • Then By: Policy Name or Description. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Remove Selected

Select the required policy and click Remove Selected to deselect any policy from Selected Policies table.

Remove All

Click to remove all the policies listed in the Selected Policies table.

Select

Click to add the Access Policy. Access Policies are listed in the Assign Access Policy Panel.

Cancel

Click to close the window without adding.

Members

Use this tab to define members to this role manually or via a membership rule.

Element Description

User Membership Rule

Displays the membership rules.

Member assignment

Displays the user assigned.

User Membership Rule

Element Description

Create Membership Rule

Click to add membership rule. Expression builder window opens.

Evaluate Rule Later

Select if the rule has to be evaluated later.

Edit Rule

Click to edit the membership rule.

Delete Rule

Click to delete the membership rule.

Member Assignment

Element Description

Assign Users

Click to assign user. Assign user window opens.

Direct Members

Displays the members that are statically assigned to the open role.

Rule Based Members

Displayed the members that are assigned to the open role via membership rules.

Indirect Members

Displays the members that are indirectly assigned to this role.

All Members

Displays all the members, direct and rule based which are assigned to the open role.

Pending Members

Displays the members that are pending to this role.

View

Choose commands from the View menu to control how the columns are displayed:

  • Columns: Click a column header name to quickly show or hide a single column.

  • Detach: Click to open the table in a larger window.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Ascending or Descending.

      • Then By: Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Assign

Click to assign static users. The Assign Users search dialog box is displayed.

Revoke

Click to revoke a user.

Refresh

Click Refresh to update the screen with any changes made on the (back-end) server.

Detach

Click to open the table in a larger window.

Organizations

Using this tab you can view the list of Organization that this role is available to.

Element Description

Action

Select the following options from the Actions menu:

  • Add: Click to add new organization.

  • Remove: Click to remove the selected organization.

  • Undo: Click to undo previous action.

  • Refresh: Click to update the screen with any changes made on the (back-end) server.

View

Displays the list of selected roles.

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Organization Name, Type, Hierarchy Aware, or Pending Action. Ascending or Descending.

      • Then By: Organization Name, Type, Hierarchy Aware, or Pending Action. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to refine the search results by providing additional filters.

Add

Click Add to add a new organization.

Remove

Click Remove to remove the selected organization.

Undo

Click Undo to undo previous action.

Refresh

Click Refresh to update the screen with any changes made on the (back-end) server.

Query By Example

Click to refine the search results by providing additional filters.

Detach

Click to open the table in a larger window.

Add Organizations

Element Description

Search list

Select an attribute based on which you can search the Organization. The attributes are Organization Name, Type, Organization Status, Parent Organization Name, or Certifier User Name.

Search text box

Enter a value of the selected attribute as the search criterion.

Search

Click to perform the search and display the results in a tabular format.

Results

Displays the search result.

Select the following options from the View menu:

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Organization Name, Type, or Organization Status. Ascending or Descending.

      • Then By: Organization Name, Type, or Organization Status. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

  • Query By Example: Click to show or hide the filter row that is displayed above the column headers to query on the columns.

Add Selected

Select the required organization and click Add Selected to add it to Selected Organization list.

Add All

Click to add all the organizations listed in the Result list.

Selected Organization

Displays the list of selected organizations.

  • Columns: Click a column header name to quickly show or hide a single column.

  • Sort

    • Ascending

    • Descending

    • Advanced

      • Sort By: Organization Name, Type, or Organization Status. Ascending or Descending.

      • Then By: Organization Name, Type, or Organization Status. Ascending or Descending.

  • Reorder Columns: Click to open a dialog that lets you change the order of the table columns.

Remove Selected

Select the required organization and click Remove Selected to deselect any organization from Selected organization list.

Remove All

Click to remove all the organization listed in the Selected organization list.

Select

Click to add the organization. Organizations are listed in the Assign organization Panel.

Cancel

Click to close the window without adding organizations.

History

Using this tab you can view history of changes in the specified date range for this role.

Element Description

Search History

Select the date range. Click Select Date to select the date.

Search

Click to search the history for the selected date range.

Reset

Click to reset the values of the search fields.

Attributes

Displays the attributes associated with the role.

Hierarchy

Displays the role hierarchy associated with the role.

Access Policy

Displays the Access policy associated with the role.

Organization

Displays the Organization associated with the role.

Role Membership

Displays the role membership associated with the role.

Membership Rules

Displays the membership rules associated with the role.

Certification

Displays the certification associated with the role.

Related Topics

Viewing and Administering Roles in Oracle Fusion Middleware Performing Self Service Tasks with Oracle Identity Governance