You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

View OAuth application details

Details for an application can be viewed on the application’s View One page. This page contains tabs and accordions that provide information about the application and provide the ability for administrators and other delegated users to manage the application.

The number of tabs, accordions, information and management capability presented on these pages differs according to the amount of access granted to the person viewing the page.

To view details for an application, do the following:

  1. On the navbar, expand Apps and Authentication and click Applications.

  2. Search for the application for which you want to view the details and click the Display Name link for it.



    This action opens the View One page for the selected application. To page displays general information about the application and provides access to edit the application. To edit applications, users need to have the ACT-Application-Object-Administration access level for the application

Cards

Purpose

Cards

Purpose

General Card

Displays general information about the application and provides access to edit functionality.

  • Display Name – This is the name of the application that displays to users in the EmpowerID UI. Users with the ACT-Application-Object-Administration access level will see an Edit link and icon. Clicking the Edit link directs users to the Edit One page for the application.

  • Description – The description of the application

  • Publish in IAM Shop – Displays whether the application is published in the IAM Shop

  • PBAC App – Displays whether the application is a PBAC application

  • Has PBAC Field Types – Displays whether the application has PBAC field types. This applies to PBAC applications only.

  • Responsible Party – Allows you to set a person as responsible for the application. By default, each person assigned as a responsible party is granted the Access Manager access level for the application.

Advanced Card

 

Displays more in-depth information about the application and provides access to edit the OAuth Provider App and Direct Assigned Locations for the application.

Extension Card

 

Displays extension attributes stored in the database for the application, if any

 

The SSO tab provides access to SSO-related and generic application-specific information and functionality.

Components of the SSO tab include the following:

Component

Purpose

Component

Purpose

Scopes (OAuth) Accordion

Provides functionality for viewing, adding and deleting OAuth Scopes to the application. For more information on OAuth Scopes and applications, see Adding OAuth Scopes to Applications.

Scope to API Mapppings Accordion

Provides functionality for viewing, adding, and deleting OAuth Scopes to API endpoint mappings. API endpoints for the application must be registered in EmpowerID. For more information, see Create Custom REST API Endpoints.

Multi-Factor Authentication (Link Only if Specifice Types Required) Accordion

Provides functionality for viewing, adding, and deleting Multi-Factor Authentication to and from the application. For more information on MFA and applications, see Assign MFA Types to Applications.

Adaptive Authentication Rules Accordion

Provides functionality for viewing, adding, and deleting Adaptive Authentication Rules to and from the application. For more information on Adaptive Authentication Rules and applications, see Assign Adaptive Authentication Rules to Applications.

Actions Accordion

Contains Action links for initiating generic application-related workflows, such as the Manage Application Wizard workflow and the Delete Application workflow.

Editable Multivalued Fields Accordion

Displays miscellaneous information about the application, such as the search tags linked to it.

Additional Information Accordion

Provides access to links to view the audit history for the application, who has access to the application and all locations for the application.

 

The RBAC tab provides access to RBAC-related information and functionality.

Components of the RBAC tab include the following:

Component

Purpose

Component

Purpose

Application User (Viewer) Accordion

Provides functionality for viewing, adding and removing people from the Viewer access level to the application.

Application Owners Accordion

Provides functionality for viewing, adding, and removing people to and from the Access Manager access level for the application.

Who is Eligible to Request (As Resource) Accordion

Provides functionality for viewing, adding, and removing eligibility from users. Depending on the type of eligibility granted, eligible users can either access the application immediately or submit a request fir access from the IAM Shop. For more information on eligibility, see Eligibility and the IAM Shop.

Who is Excluded from Requesting (As Resource) Accordion

Provides functionality for viewing, adding, and removing users from eligibility exclusions. Users who are excluded from eligibility cannot request access to the application. For more information on eligibility exclusion, see Eligibility and the IAM Shop.

RBAC Access to This Resource Accordion

Provides functionality for viewing, adding, and removing RBAC access to the application. Users with RBAC access can interact with the application in the manner specified by the access level granted to them.

 

The Identities tab provides access to application-specific identity information, such as application accounts, groups, and membership changes.

Components of the Identities tab include the following:

Component

Purpose

Component

Purpose

Application Accounts (In Account Store or Linked Group) Accordion

Provides functionality for viewing, adding and removing user accounts to and from the application.

Accounts Manually Linked to Application Accordion

Provides functionality for viewing, adding and removing user accounts manually linked to the application.

Application Groups (In Account Store or Linked) Accordion

Provides functionality for viewing, adding and removing groups to and from the application.

Membership Changes Accordion

Displays changes in group membership

 

The App Resources tab provides access to application-specific resource information, such as subcomponents of the application, workflows, and Management Roles used by the application.

Components of the App Resources tab include the following:

Component

Purpose

Component

Purpose

Protected Application Subcomponents Accordion

Provides functionality for viewing, adding and removing protected application subcomponents to and from the application. Each application has a protected application subcomponents that represents itself in the EmpowerID Identity Warehouse and may have one or more additional subcomponents depending on the composition of the application. Examples of applications with more than one subcompont include EmpowerID applications, such as the IAM Shop.

Workflows Used By This Application Accordion

Provides functionality for viewing, adding and removing workflows specifically used by the application.

Management Roles Used By This Application Accordion

Provides functionality for viewing, adding and removing Management Roles used by the application. Application Management Roles can be used to grant specific access to the application.

People Assigned to Application Management Roles Accordion

Provides functionality for viewing, adding and removing people to and from application Management Roles.

Â