Versions Compared

Old Version 5

changes.mady.by.user Dhiraj Kumar

Saved on

compared with

New Version Current

changes.mady.by.user Dhiraj Kumar

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Add a PBAC attribute to an account - PBAC field type or an attribute is a connector used to connect an EmpowerID actor like an account to a PBAC membership policy target such as a group.

  2. Create a PBAC membership policy for a group - It is required to create a PBAC membership policy so that we can use it for a target type( e.g., a Group).

  3. Add the same PBAC attribute to the policy - PBAC field type or attribute should be added to a PBAC membership policy, for connecting it to an EmpowerID actor.

  4. Wait for policy compilation and verify the result - Once the policy is compiled the the person corresponding to the account will be added to the group.

...

  1. On the navbar, expand Identity Administration and select Groups.

  2. Search for a group name.

     

  3. Click on the group logon name hyperlink to open the group’s view-one page.

     

  4. Select the Advanced tab and scroll down to select Attribute-Based Membership Policies.

     

  5. Click on the + icon in the above image to create a new membership policy for this group. The below page will open. Enter the name of the policy, select a policy type. Check the IsEnable check box. Select the minute interval (say 15 min) and click on Save.

  6. This will create the PBAC membership policy and queue it for compilation.


Add a PBAC Attribute to a PBAC Membership Policy

  1. You can add a PBAC attribute to an existing PBAC membership policy. Click on the Name link of the PBAC Membership policy you want to add an attribute to. This will open the view-one page of this PBAC membership policy. Select the Attribute Conditions (Field Types) link.

    Image Added

  2. Click on the + icon to add an attribute to this policy that you added to the person earlier. Search for the name of the PBAC membership policy and select it. Select the two values ( sales and IT) check boxes. Select the checkbox If matches all values. Click Save.

    Image Added

  3. The attribute is now added to the PBAC membership policy type.

    Image Added


     

Verify the Result

  1. After the PBAC membership policy is compiled, it will add the account to the group. This can be checked at the view-one page of the group ( for which the policy was created). Select the Attribute-Based Membership Inbox link. We can see that the person corresponding to the account( to which the PBAC attribute was added) is now member of this group.

    Image Added

Insert excerpt
IL:External Stylesheet
IL:External Stylesheet
nopaneltrue

Insert excerpt
IL:External Stylesheet
IL:External Stylesheet
nopaneltrue
Related

Add Account to Management Role