Role Assignments are the method in which CloudRadial Partners can quickly and easily apply security roles to the users within the platform.
These roles are now definable and applicable to users by Scope, and users can now have multiple roles assigned to them.
Keep in mind - where multiple roles exist, CloudRadial will use the most permissive approach to permission resolution.
Read the article below to learn how to best manage and approach role assignments to meet your needs as a CloudRadial Partner.
- Adding a Role Assignment
- Removing Role Assignments
- Attributions of Role Assignments
- Role Assignment Use Cases
Adding a Role Assignment
Adding a Role Assignment is the quickest and most effective way to apply Security Roles to users.
Before beginning a role assignment strategy, be sure to familiarize yourself with Security Roles first, as Role Assignments are simply a way to disseminate these.
Read more about Security Roles here.
To add a new role assignment:
- Navigate to Partner > Security
- You will land on the first tab, Role Assignments, by default
- Select + Add Role Assignment via the top left button
-
Configure your Role Assignment to your preferences:
- Set the Scope Type, Scope, Role, and Member type.
- If you want to learn the specifics of each, please read this article on Role Assignment Configuration Options.
- If you want to learn the specifics of each, please read this article on Role Assignment Configuration Options.
- Remember that only Enterprise CSA Partners can get Company Group as a Scope Type and User Groups as a Member Type.
- Set the Scope Type, Scope, Role, and Member type.
- Once you've set the Member Type, you can select the specific user(s) to receive the role assignment
- Once complete with your User and/or User Group selection, select Review to preview changes
- Select Submit to finalize your selections
Your selected users will now have their permissions applied to their user profiles. The users may require a refresh of their screen for these permissions to take effect.
Removing a Role Assignment
You can review role assignments and decide which roles should be removed from users from the Partner > Security > Role Assignments (tab).
You can use this top-level view and its filters to determine quickly who has what role assignment at a glance. Choosing to highlight and delete a role assignment from a user here can be an effective way to prune permissions from users.
- For specific details on how to best remove roles from specific users, please see this article.
Attributions of Role Assignments
When reviewing user permissions, it can be helpful to understand where a particular user is getting their role assignments from. There are two methods by which a user can be assigned a role:
- Direct - You choose that user and set their role assignment manually
- Inherited - The user gains their role assignment by association with a user group
Keep the following in mind when it comes to attributions:
-
Direct attributions can be removed and edited freely.
- To edit direct user attributions, find them in the user lists (either in Usage > Users within their own company, or preferably, within Partner > Clients > Users (tab). Select the user and find their Role Assignments tab, and edit their roles.
- To edit direct user attributions, find them in the user lists (either in Usage > Users within their own company, or preferably, within Partner > Clients > Users (tab). Select the user and find their Role Assignments tab, and edit their roles.
-
Inherited attributes cannot be removed at the user level.
- The user must either be removed from the group or the role assignment must be deleted from them via Partner > Security > Role Assignments (tab).
Role Assignment Use Cases
If you wish to learn more about specific (yet common) role assignment use cases, read the following articles. They contain both text and video instructions on how to set up the most popular role types:
Comments
0 comments
Article is closed for comments.