You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Skip to end of banner
Go to start of banner

Preapprove People To Business Role and Location

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Current »

To pre-approve a people or a person to a business role and location, using the PBAC membership policy, we need to follow the below steps

  1. Add a PBAC attribute to a person - PBAC field type or an attribute is a connector used to connect an EmpowerID actor like a person to a PBAC membership policy target such as a business role and location.

  2. Create a PBAC membership policy (of the type pre-approve) for a business role and location - It is required to create a PBAC membership policy so that we can use it for a target type( e.g., a business role and location).

  3. Add the same PBAC attribute to the policy - PBAC field type or attribute should be added to a PBAC membership policy, for connecting it to an EmpowerID actor.

  4. Wait for policy compilation and verify the result - Once the policy is compiled the person will be pro-approved for the business role and location.

Add a PBAC field Type or Attribute to a Person

  1. On the navbar, expand Identity Administration and select People.

  2. Search for a person to whom you want to add a PBAC field Type.

     

  3. Click on the person’s EmpowerID login link to open the view-one page for the person

     

  4. Click on the PBAC attribute assignment on the left menu. After that click on the + icon to add a PBAC attribute. Select the radio button Attribute Only, search for the name of the attribute and select the two check boxes for values of attribute (sales and Software). Click Save.

     

  5. This will add this attribute to the person.


Create a PBAC membership policy (type pre-approve) for a Business Role and Location

PBAC Membership policies can be created on the view one page of the business role and location that is the target of the policy. In the below example, we demonstrate how to create a policy using the view-one page of a business role and location that is the target of the policy.

  1. On the navbar, expand Role Management and select Business Role and Location.

  2. Select the tab Allowed Combinations.

  3. Select a business role and location name.

  4. Click on the business role and location Name hyperlink to open the management role’s view-one page. Select the Advanced tab and scroll down to select Attribute-Based Membership Policies..


  5. Click on the + icon in the above image to create a new membership policy for this business role and location. The below page will open. Enter the name of the policy, select a policy type. Check the IsEnable check box. Select the minute interval (say 15 min) and click on Save.

  6. This will create the PBAC membership policy and queue it for compilation.

  • No labels