on 12-16-2014 1:16 PM
Hi,
I'm new to IDM config and currently struggling with a requirement where a user needs to view only Manage and self service tab in the IDM UI and later on this view shall be linked to another portal.
Thanks
Rimesh
Hi Rimesh,
These requirements are very well documented in standard UI config guide below (need S-user id).
https://websmp209.sap-ag.de/~sapidb/011000358700001233082010E
You can find all relevant IDM docs here,
Kind regards,
Jaisuryan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rimesh,
So how are you currently giving access to UI for your project users?
If you want to give access only to manage tab, then you need to assign only MX_PRIV:WD:TAB_MANAGE privilege to the user. To achieve this, two common ways are,
Both above scenarios are explained in many other posts in the community and documented in the config guides.
Please try above said options and let us know if you are struck. Just to re-iterate what Matt said above, attending formal training is recommended.
Kind regards,
Jaisuryan
Hi Rimesh,
From top of my head, I can say,
Thru portal UME, you can only authenticate users to IDM UI via "idm_authenticated" action and IDM Admin UI via "idm_monitoring_support/s idm_monitoring_administration" action. But what (Tabs) to display within that UIs is controlled by IDM privileges. If you do not have any role with only "MX_PRIV:WD:TAB_MANAGE" priv, then you can directly assign it to the user. Else I'm afraid you have to create a separate role for it.
Experts, please correct me if I am wrong. Cheers.
Kind regards,
Jaisuryan
Hello Rimesh,
I can tell you, that the requirement is pretty easy to achieve and if you check the IDM documentation that is available from the startpage of this space, you'll find the "Security Guide". There it is explained, which IDM-own privilege is responsible for which tab.
If you want to dive into IDM and its administration/configuration, searching and reading will become your best friends, if they aren't that already.
Regards,
Steffi.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Rimesh,
Always happy to answer questions, but long term, you'll need to consider what Steffi, Jai, and I have mentioned.
As Jai mentioned, use of the MX_PRIV:WD:TAB_MANAGE privilege will give you the access you want. You might want to consider creating IDM roles (consider this as IDM specific composite roles) You will definitely want to research this further as you consider how your IDM implementation is to mature.
Regards,
Matt
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.