In Identity Management, you manage users through admin roles. For example, you use admin roles to modify profile attributes of users, give users options for managing their own accounts, and to approve tasks that use workflow.
Roles simplify privilege management. Instead of associating a user with each task that he performs or each account that he needs, you can assign a role to the user. The user can perform the tasks in the role or can use the accounts that are associated with the role. Tasks enable users to perform Identity Management functions, such as modifying a profile.
The following illustration shows several tasks which are combined into a single admin role and assigned to multiple users:
You also use admin roles to manage other user store objects (groups and organizations) and to manage the roles and tasks through which you manage user store objects.
|
Copyright © 2013 CA.
All rights reserved.
|
|