You are viewing an earlier version of the admin guide. For the latest version, please visit EmpowerID Admin Guide v7.211.0.0.

Skip to end of banner
Go to start of banner

Configure Management Roles for Chatbot

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

EmpowerID employs Management Roles to control access to the Chatbot, ensuring that users can only interact with it if they possess the relevant roles. Access to the EmpowerID Chatbot is restricted, emphasizing the necessity for users to have the appropriate roles to engage with this feature. In EmpowerID, Management Roles play a crucial role by providing users with comprehensive sets of operational capabilities organized into job-based bundles. These bundles serve as efficient mechanisms for bulk resource assignments, aligning with users' roles within the organization.

Management Roles are prefixed by their function in EmpowerID and include the following:

  • UI – Management Roles prefixed with UI grant users access to specific UI elements in the EmpowerID Web interface.

  • VIS – Management Roles prefixed with VIS grant users the ability to see or visibility to specific objects in EmpowerID.

  • ACT – Management Roles prefixed with ACT grant users the ability to manage or perform an action on specific objects in EmpowerID.

Please find instructions on How to Assign Management Roles Here

Roles Needed to Access the Chatbot

To access the Chatbot, the users must have one or more of the below Management Role assignments (based on the required scope).

EmpowerID Chat Bot Access Role Bundle

All the given roles are bundled in a role bundle called EmpowerID Chat Bot Access, and assigning a user with the “EmpowerID Chat Bot Access“ role will automatically add all the roles described below.

Management Role

Description

ACT-Business-Role-CanUseInAssignments-All

Allows selecting all business roles while creating an access assignment to another resource. It does not permit the management of access assignments for the business role because the assigner would still need access to the resource or role they wish to assign to the business role.

ACT-Location-CanUseInAssignments-All

Allows assigning any location to another resource. The assigner would still need access to the resource or role they wish to assign the location.

ACT-Person-CanUseInAssignments-All

Allows assigning a person while creating an access assignment to another resource. It does not permit the management of access assignments for the person because the assigner would still need access to the resource or role they wish to assign to the person.

ACT-Person-Password-Self-Service

Grants access to change passwords, enroll for a password reset, and other password self-service operations.

ACT-Shared-Credential-Use-All

Grants access to check out all shared credentials.

UI-Mobile-App-Chat-Full-Access

Grants complete access to UI, workflows, and APIs for mobile apps and Chatbot.

VIS-BusinessRole-All

Grants access to view all business roles.

VIS-Location-All

Grants access to view all Locations.

VIS-Management-Role

Grants the user to view all management roles.

VIS-Mobile-App-API

Grants access to make a call to Mobile App and Chatbot API endpoints/methods.

VIS-Person-All

Grants access to view all people.

VIS-Shared-Credential

Grant access to view all vaulted credentials.


  • No labels