Within In EmpowerID, Role and Location Mapping refers to the association process of External associating external roles and locations that come originating from external authoritative sources to the with internal RBAC Business Role and Locations that are used to determine (Role-Based Access Control) Business Roles and Locations. This mapping is instrumental in determining identity provisioning and access assignments. As user accounts are received from an authoritative source sources, such as an HR system, they are associated with an linked to external role and location assignment assignments based on the attributes and data of provided by the external system. As these user accounts are joined to integrated into the EmpowerID ecosystem and associated with a person's identity, the external role and location assignments are translated to an RBAC business role and location based on the mapping between the external and internal assignments. The image below depicts this concept. In the imageinto EmpowerID Business Roles and Locations through predefined mapping rules.
...
In the illustrated concept, the source directory contains essential information such as an employee record, a job code, and a location code. With Through role and location mappings in EmpowerID, the job code can be mapped to systematically translated into an EmpowerID Business Role, and the location code can be mapped to an EmpowerID location. This internal role and location are then Location. These internally defined roles and locations are subsequently assigned to the person object that is joined corresponds to the user account, effectively configuring access and provisioning based on their organizational roles and locations.
It is also important to note highlight that the identification of external roles and locations can be identified through often relies on the connector mappings of organizational information, which is the standard and most common methodology. However, if in scenarios where an external system does not have a clear lacks a well-defined representation of an the organizational structure that is suitable necessary for creating the external roles and locations, a EmpowerID offers the flexibility to create dynamic hierarchy policy can be created that can automatically policies. These policies can dynamically combine up to 3 three attributes to create the generate external roles and 3 up to three attributes to create the external locations . These dynamic hierarchy policies can be easily created in the EmpowerID Web UI.
...
automatically. EmpowerID's intuitive Web UI facilitates the straightforward creation of these dynamic hierarchy policies, ensuring adaptability to various organizational structures and data sources.
Key Terms to know
•RBAC Mapping – the ability to inventory role and location hierarchies from external systems and use the assignment of users to these hierarchies to automate and drive Business Role and Location assignments in EmpowerID
...
•OrgZoneExternalOrgZone – mapping of EmpowerID Business Location to external system locations
...
| Insert excerpt | ||||||
|---|---|---|---|---|---|---|
|