Designing access roles

Define what a person can do in OpenIAM

The self-service portal offer a broad range of functionality. You may not want to expose all functionality to all people. To manage, this you should consider defining a roles matrix as shown below.

OpenIAM Menu OptionEnd User RoleRole 2Role 3
My Info
My Applications
Request approval
- My approvals
- Request history
- Request administration
Access Management
- Manage user
- Access profiles
- New user
- New user - no approver
- Bulk upload
Self-service center
- Change password
- Change password extended
- Challenge response
- Directory lookup
- My Devices
- My Sessions
- Edit your profile
User Access
- View My Access
- View Direct Reports