3.20 Roles Details
Use the Open Roles page to display the details of the selected role and modify role information.
Element | Description |
---|---|
Attribute |
Displays the role attributes. |
Hierarchy |
Displays the role hierarchy information. |
Access Policy |
Displays the access policies assigned for the role. |
Members |
Displays the members assigned to the open role. |
Organizations |
Displays the organizations to which the open role has been published. |
History |
Displays all data about the open role that have been modified within a specified date range. Note: The History tab is displayed only when Identity Audit is enabled in the Oracle Identity Manager deployment. |
View Analytics |
Click View Analytics to compare the role with other existing roles to justify or reject the creation of the requested role. Note: When Identity Audit is enabled and if you modify any attribute or any other data, then the View Analytics button is available. This is for the request approver to compare the role before approval. |
Apply |
Click Apply to submit the changes. |
Revert |
Click to cancel the changes made to the page. |
Attribute
Use the Attributes page to provide basic role information.
Element | Description |
---|---|
Name |
Enter the name of the role. |
Role Namespace |
Displays the role namespace details. |
Display Name |
Enter the display name of the role. |
Role E-mail |
Enter the email id of the role. |
Role Description |
Enter the role description. |
Owned By |
Click |
Catalog Attributes
Element | Description |
---|---|
Catalog |
Enter the Catalog name. |
Audit Objective |
Enter the Audit Objective. |
Risk Level |
Select Risk level as, High Risk, Medium Risk, or Low Risk. |
User Defined Tags |
Enter user defined tags. |
Approver User |
Click |
Approver Role |
Click |
Certifier User |
Click |
Certifier Role |
Click |
Fulfillment User |
Click |
Fulfillment Role |
Click |
Certifiable |
Select to enable the role to appear in the certification. |
Auditable |
Select to enable the role to appear in audit. |
Requestable |
Select to mark the role as Requestable entity. |
Hierarchy - Inherits From
Use this tab to displays the parent roles from which it inherits permissions from.
Element | Description |
---|---|
Actions |
Select the following options from the Actions menu:
|
View |
Choose commands from the View menu to control how the columns are displayed:
|
Add |
Click Add to add a parent role. |
Remove |
Click Remove to remove a parent role that is selected. |
Undo |
Click to undo previous action. |
Refresh |
Click Refresh to update the screen with any changes made on the (back-end) server. |
Detach |
Click to open the table in a larger window. |
|
Click to show or hide the filter row that is displayed above the column headers to query on the columns. |
Hierarchy - Add Parent Roles
Element | Description |
---|---|
Search Role list |
Select an attribute based on which you can search the Role. The attributes are Display Name, Name, Role E-mail, Role Description, or Role Namespace. |
Search text box |
Enter a value of the selected attribute as the search criterion. |
|
Click to perform the search and display the results in a tabular format. |
Results |
Displays the search result. Select the following options from the View menu:
|
Add Selected |
Select the required role and click Add Selected to move it to Selected Roles table. |
All Add |
Click to add all the roles listed in the Result list. |
Remove Selected |
Select the required roles and click Remove Selected to deselect them from Selected Roles list. |
Remove All |
Click to remove all the roles listed in the Selected Roles list. |
Selected Roles |
Displays the list of selected roles.
|
Select |
Click to add the Role. Roles are listed in the Inherited from Panel. |
Cancel |
Click to close the window without adding roles. |
Hierarchy - Inherited By
Use this tab to displays the child roles which inherit permissions from this role.
Element | Description |
---|---|
Actions |
Refresh: Click to update the screen with any changes made on the (back-end) server. |
View |
Choose commands from the View menu to control how the columns are displayed:
|
Refresh |
Click Refresh to update the screen with any changes made on the (back-end) server. |
Detach |
Click to open the table in a larger window. |
|
Click to show or hide the filter row that is displayed above the column headers to query on the columns. |
Access Policy
Use this tab to add access policies to define access rights of this role.
Element | Description |
---|---|
Action |
Select the following options from the Actions menu:
|
View |
Displays the list of selected roles.
|
Add |
Click Add to add a new access policy. |
Remove |
Click Remove to remove the selected access policy. |
Undo |
Click Undo to undo previous action. |
Refresh |
Click Refresh to update the screen with any changes made on the (back-end) server. |
|
Click to refine the search results by providing additional filters. |
Detach |
Click to open the table in a larger window. |
Access Policy - Add Access Policies
Elements | Description |
---|---|
Search policy list |
Select any one of the following search conditions:
|
Search text box |
Enter a value of the selected attribute as the search criterion. |
|
Click the search icon to search for policy. |
Results |
Displays the search result. Select the following options from the View menu:
|
Add Selected |
Select the required capability and click Add Selected to add any access policy selected from the Result table. |
Add All |
Click to add all the access policies listed in the Results table. |
Selected Policies |
Displays the search result. Select the following options from the View menu:
|
Remove Selected |
Select the required policy and click Remove Selected to deselect any policy from Selected Policies table. |
Remove All |
Click to remove all the policies listed in the Selected Policies table. |
Select |
Click to add the Access Policy. Access Policies are listed in the Assign Access Policy Panel. |
Cancel |
Click to close the window without adding. |
Members
Use this tab to define members to this role manually or via a membership rule.
Element | Description |
---|---|
User Membership Rule |
Displays the membership rules. |
Member assignment |
Displays the user assigned. |
User Membership Rule
Element | Description |
---|---|
Create Membership Rule |
Click to add membership rule. Expression builder window opens. |
Evaluate Rule Later |
Select if the rule has to be evaluated later. |
Edit Rule |
Click to edit the membership rule. |
Delete Rule |
Click to delete the membership rule. |
Member Assignment
Element | Description |
---|---|
Assign Users |
Click to assign user. Assign user window opens. |
Direct Members |
Displays the members that are statically assigned to the open role. |
Rule Based Members |
Displayed the members that are assigned to the open role via membership rules. |
Indirect Members |
Displays the members that are indirectly assigned to this role. |
All Members |
Displays all the members, direct and rule based which are assigned to the open role. |
Pending Members |
Displays the members that are pending to this role. |
View |
Choose commands from the View menu to control how the columns are displayed:
|
Assign |
Click to assign static users. The Assign Users search dialog box is displayed. |
Revoke |
Click to revoke a user. |
Refresh |
Click Refresh to update the screen with any changes made on the (back-end) server. |
Detach |
Click to open the table in a larger window. |
Organizations
Using this tab you can view the list of Organization that this role is available to.
Element | Description |
---|---|
Action |
Select the following options from the Actions menu:
|
View |
Displays the list of selected roles.
|
Add |
Click Add to add a new organization. |
Remove |
Click Remove to remove the selected organization. |
Undo |
Click Undo to undo previous action. |
Refresh |
Click Refresh to update the screen with any changes made on the (back-end) server. |
|
Click to refine the search results by providing additional filters. |
Detach |
Click to open the table in a larger window. |
Add Organizations
Element | Description |
---|---|
Search list |
Select an attribute based on which you can search the Organization. The attributes are Organization Name, Type, Organization Status, Parent Organization Name, or Certifier User Name. |
Search text box |
Enter a value of the selected attribute as the search criterion. |
|
Click to perform the search and display the results in a tabular format. |
Results |
Displays the search result. Select the following options from the View menu:
|
Add Selected |
Select the required organization and click Add Selected to add it to Selected Organization list. |
Add All |
Click to add all the organizations listed in the Result list. |
Selected Organization |
Displays the list of selected organizations.
|
Remove Selected |
Select the required organization and click Remove Selected to deselect any organization from Selected organization list. |
Remove All |
Click to remove all the organization listed in the Selected organization list. |
Select |
Click to add the organization. Organizations are listed in the Assign organization Panel. |
Cancel |
Click to close the window without adding organizations. |
History
Using this tab you can view history of changes in the specified date range for this role.
Element | Description |
---|---|
Search History |
Select the date range. Click |
Search |
Click to search the history for the selected date range. |
Reset |
Click to reset the values of the search fields. |
Attributes |
Displays the attributes associated with the role. |
Hierarchy |
Displays the role hierarchy associated with the role. |
Access Policy |
Displays the Access policy associated with the role. |
Organization |
Displays the Organization associated with the role. |
Role Membership |
Displays the role membership associated with the role. |
Membership Rules |
Displays the membership rules associated with the role. |
Certification |
Displays the certification associated with the role. |
Related Topics
Viewing and Administering Roles in Oracle Fusion Middleware Performing Self Service Tasks with Oracle Identity Governance