You can create Visibility Restriction policies to limit the ability of people to view resources in EmpowerID. Visibility Filter policies are SQL statements written against the EmpowerID Identity Warehouse that give you power and flexibility in determining which users can view what objects. They even allow you to specify the visibility of individual attributes, without concern for the complexities of location-based delegations. You can assign these policies to any EmpowerID Actor type, such as a Management Role, Business Role and Location, Group, or Set Group, and to individual accounts and people. Once assigned, any Person who is a member of the Actor type is assigned the policies.
|