Login
    Contents x
    Role Mapping
    • 03 Apr 2024
    • 3 Minutes to read
    • Print
    • PDF
    Contents

    Role Mapping

    • Updated on 03 Apr 2024
    • 3 Minutes to read
    • Print
    • PDF
    Article summary

    A centralized component that focuses on managing user access!

    Role Mapping ensures that users have appropriate access to rights and permissions based on their roles and responsibilities. It also minimizes the risk of unauthorized access, data breaches, and insider threats.

    The illustration showcases the capabilities of Role Mapping under the Platform Studio layer.

    User persona: Super Admin

    Let's explore the following Use Case for configuring Role Mapping!
     


    Use Case

    User persona:Super Admin

    Solution
    Fredrick, at NovaTech needs to define the specific access details for the Super Admin role in both the Information Technology (IT) and Human Resources (HR) departments. This involves viewing, editing, or managing certain information or features within IT and HR.
    		Fredrick can implement Role Mapping functionality, facilitating seamless role management. He performs the following steps to achieve the requirements.
    1. Access Details - Specify the Tenant Access parameters for the Super Admin in Information Technology and Human Resources.
    2. Publish To - Add credentials to this Role to ensure that only authenticated individuals with the Super Admin role can exercise the defined access rights.  

    This approach streamlines the management of Roles and Access Control, making it easier for Fredrick to oversee and maintain the organization's apps and features.

    User Role Mapping

    It is essential to map a Role and Role Template to a Domain since they are connected to a group of Modules and Tenants. Mapping users to the same Domain as specified by the Role Template enables their access to the Modules and Tenants based on the configuration settings defined within the Role Template.

    Prerequisites

    • Select the specific Domain and Sub Domain for configuring the Role Mapping.Figure: Selection of Domain and Sub Domain

    To configure Role Mapping, perform the following steps:

    1.  Navigate to Platform Studio > Access Control Center > User Role Mapping.  Add Mapping tab is displayed on the mapping list page.
    2.  Click Add Mapping tab to view the new mapping screen.

    You can view the following tabs for mapping control:

    General

    This section contains the list of properties using which the Super Admin can configure the respective control's Name, Domain, Sub Domain, Description, Role etc.Figure: General

    To know more about the fields that are available under the General section, see the Field Description given below.

    Field Description

    Name Description

    Name    		Type the name of the Role Mapping that is to be configured.
    Description
    		Describe the User Role mapping that is being configured.
    DomainDomain is selected by default.
    Sub DomainSub Domain is selected by default.
    RoleChoose a role for which the mapping is to be established from the Role dropdown.

    If there is no Role created in the selected application, then an option to navigate to the Role creation screen is displayed.
    ActiveToggle the switch to make the current mapping configuration in an Active or deactivated state.
    Note
    In the User creation screen’s, Role Mapping tab the admin/super user can only view End-user and Analyst Roles.

    Define Access

    This section contains the list of properties using which the Super Admin can configure the condition to define the access and build condition on Tenant control. Figure: Define Access

    To know more about the fields that are available under the Define Access section, see the Field Description given below:

      Field Description

    Name Description
    Field 

    		Tenant is specified as a value under the field by default.
    OperatorSelect the operator type from the dropdown list.
    Figure: Operator Type
    ValueSelect the values from the list. Here Facilities, Human Resources and Information Technology are selected from the list.
    Figure: Value

     The field dropdown can be expanded to view and select the desired option. You can add a new condition row by clicking on the +icon. If you want to delete any row, click the delete icon.

    Publish To

     Publish the component to a targeted audience by selecting a relevant criterion from the Publish To tab. This section contains publish components using which the Super Admin can publish based on User properties and lists.

    Figure: Publish To

    To know more about the fields that are available under the Publish To section, see the Field Description given below.

     Field Description

    Name Description
    Field 

    		Select the user attribute from the drop-down list.
    Figure: User Attributes
    OperatorSelect the Operator type from the dropdown list.
    Figure: Operator Type
    ValueSelect the values from the list to publish the mapping. Here mail ID of the admin is entered in the Value column. The value populates based on the Role access of the App Designer designing the component Figure: Value

    Once Role Mapping is published, click GO TO LIST. The list displays the Role Mapping under Access Control Center.

    Figure: Role Mapping list

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout