Map Rights to Local Functions

Owned by
Phillip Hanegan
Last updated: Feb 07, 2022
4 min read

Once a local function has been created and added to a global function, you can map external system rights and local roles to the function. This lets you know who can do what in the external system the functions are mapped to. This article demonstrates how to create a Right Mapping policy for a local function and map rights to the policy.

Create a right mapping policy

  1. On the navbar, expand Compliance and click Risk Management.

  2. Select the Local Functions tab and search for the local function you want to map on the Risk Management page.

  3. Click the Name link for the local function.


    This opens the View One page for the local function. This page allows you to view and manage the function as needed.

     

  4. On the View One page, select the Function Mappings tab and click the Add [+] button.

     

  5. In the dialog that appears, enter the following information and click Save.

    • Name – Name of the Right mapping policy

    • Display Name – Display name of the Right mapping policy

    • Is Enabled – Select to enable compilation of the Right mapping policy

       

Map rights to the policy

  1. In the Right Mapping Policies accordion, click the Name link for the policy to which you want to map rights.


    This opens the View One page for the Local Function Policy. From this page, you can add rights to the policy.

     

  2. Expand the Rights and Field Types Mapped to Function accordion and click the Add [+] button.

     

  3. In the Right field, search for and select the right within the managed resource system you want to add to the policy. In the below example, we select microsoft.directory/groups/createasowner right for a specific Azure tenant. In this way the function only returns users with that right in that system.

     

  4. Click Save.

See Also