Versions Compared

Old Version 5

changes.mady.by.user Phillip Hanegan

Saved on

compared with

New Version Current

changes.mady.by.user Phillip Hanegan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Easy html macro
theme{"label":"solarized_dark","value":"solarized_dark"}
contentByMode{"html":"<!Doctype html>\r\n<link href=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css\" rel=\"stylesheet\" integrity=\"sha384-EVSTQN3/azprG1Anm3QDgpJLIm9Nao0Yz1ztcQTwFspd3yD65VohhpuuCOmLASjC\" crossorigin=\"anonymous\">\r\n<p>You can create Visibility Restriction policies to limit the ability of policy \r\nholders to view resources in EmpowerID. These policies are like RBAC delegations \r\nin that you can assign them to any \r\n<a href=\"#\" id=\"tooltip\" data-bs-toggle=\"tooltip\" data-bs-placement=\"top\" \r\ntitle=\"Person, Account, Group, Management Role Definition, Management Role, Query-Based Collection, Business Role and Location \">EmpowerID Actor</a>. \r\nOnce assigned to an actor, any Person belonging to that actor receives the policy. \r\nFor example, if your organization uses the services of contractors, you could create a \r\nVisibility Restriction policy that only allows contractors to see other contractors within\r\nthe organization, and apply that policy to a group or Management Role designated for Contractors. Then, when a contractor logs in, they can only see other contractors.\r\n<script src=\"https://cdn.jsdelivr.net/npm/@popperjs/core@2.9.2/dist/umd/popper.min.js\" integrity=\"sha384-IQsoLXl5PILFhosVNubq5LC7Qb9DXgDA9i+tQ8Zj3iwWAwPtgFTxbJ8NT4GN1R8p\" crossorigin=\"anonymous\"></script>\r\n<script src=\"https://cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.min.js\" integrity=\"sha384-cVKIPhGWiC2Al4u+LWgxfKTRIcfu0JTxR+EQDz/bgldoEyl4H0zUF0QKbrJ0EcQF\" crossorigin=\"anonymous\"></script>\r\n","javascript":"var exampleTriggerEl = document.getElementById('tooltip')\r\nvar tooltip = bootstrap.Tooltip.getOrCreateInstance(exampleTriggerEl) // Returns a Bootstrap tooltip instance","css":""}
...
  1. Log out of the EmpowerID Web application and log back in as a person assigned the policy. For example, if you created a Visibility Restriction policy and assigned it to a group, log in as a person who is a member of that group.
  2. From the Home page of the Web application, search for any resource object restricted by the policy. For example, if you created a Visibility Restriction policy that restricts the ability to see people, search for people. This example creates just such a policy and navigates to the White Pages.

    You are only able to see those objects for which the policy was created. In this example, the logged-in person is a member of the Contractors group. Because the Visibility Restriction policy restricts the ability of anyone who is a member of the Contractors group to see anyone outside of that group, only those people in the organization who belong to the group appear.

     Insert excerpt
    IL:External Stylesheet
    IL:External Stylesheet
    nopaneltrue