Types of Roles

Administration Guide › Role Planning › Role Decisions › Types of Roles

Types of Roles

To decide what types of roles that you need, see the following table:

Type of Role	Purpose
Admin role	Contains the tasks that you perform in the Identity Manager User Console: Admin tasks, which you use to manage users, organizations, groups, roles, and tasks. External tasks, which perform functions in business applications, such as passing user attributes to a reporting application
Provisioning role	Contains account templates that define accounts that exist in managed endpoints, such as an email system. The account templates also define how user attributes are mapped to accounts.
Access role	Provides an additional way to provide entitlements in CA Identity Manager or another application.

Type of Role

Purpose

Admin role

Contains the tasks that you perform in the Identity Manager User Console:

Admin tasks, which you use to manage users, organizations, groups, roles, and tasks.
External tasks, which perform functions in business applications, such as passing user attributes to a reporting application

Provisioning role

Contains account templates that define accounts that exist in managed endpoints, such as an email system. The account templates also define how user attributes are mapped to accounts.

Access role

Provides an additional way to provide entitlements in CA Identity Manager or another application.

You manage roles in an Identity Manager environment, which is a view of a management namespace where you manage users, groups, and organizations and the associated tasks and roles. To create an Identity Manager environment, see CA Identity Manager Configuration Guide.

For every Identity Manager environment, you need admin roles. You need provisioning roles if you need to assign additional accounts to existing users. You need access roles if you need to provide an additional way to provide entitlements in CA Identity Manager or another application.

Email CA Technologies about this topic