Update User Roles
Role-Based Access Control (RBAC) links permissions to roles instead of directly to users. Users are then assigned these roles, simplifying access management, enhancing efficiency, and reducing errors.
Update a User Role
- Select Organization from the top navigation bar, and then select Users.
- Click Update Roles for the target user.
- Add or remove roles.
- Click Update.
To view the permissions for every role, select Organization from the top navigation bar and select Roles.
Set Role Mapping (SSO Required)
Users who meet the defined key-value mapping rules will be automatically assigned the corresponding roles upon login. See Set Role Mapping for details.
Role mapping takes precedence over manual role assignments. Any manual adjustments to a user's roles will be overwritten upon the next user login when role mapping is active.
Set User Permission Boundary
A user's effective permissions are determined by the intersection of their assigned roles and their permission boundary. Which means a user's action is permitted only when:
- Allowed by at least one assigned role.
- Allowed by at least one permission boundary (if present).
- Not denied by any assigned role or permission boundary.
- Select Organization from the top navigation bar, and then select Users.
- Select the target user.
- Click edit button of the permission boundary.
- Choose proper permission policy as the user's permission boundary.
- Click Save.
Set Permission Boundary Mapping (SSO Required)
Users who meet the defined key-value mapping rules will be automatically assigned the corresponding permission boundary upon login. See Set Permission Boundary Mapping for details.
Permission boundary mapping takes precedence over manual permission boundary modification. Any manual adjustments to a user's permission boundaries will be overwritten upon the next user login when permission boundary mapping is active.
Additional Resources
- Key Concepts
- Getting Started