Group Type

Description

Companies are organized in different business units, departments or workgroups. In Soffid, they all are named as groups. These group can be categorized by a group type.

Group types can be used in the definition of Holder Groups. Some roles can be assigned to a user only through a group enabled for it. When a user no longer belongs to a group, it is not allow assign that role to the user.

A user always belongs to a user type, but groups do not necessarily have to belong a group type.

Related objects

  1. Group
  2. User

Standard attributes

  • Name: name (or code) of the organizational unit.
  • Description: description of the organizational unit.
  • Role holder: (yes|no), when this attribute is active (yes), all the groups of this type of organizational unit could be assigned to a user as a domain of a role.

Role holder (and holder group)

In some organizations is necessary to assign roles that affect only a part of the structure, for instance, a department, a division or a country.

The role holder is the role that requires to be assigned to a group, and the holder group is the group that can be assigned role permission.

To configure correctly this functionality you have to apply the next steps:

  1. Create at least one organizational unit with the role holder attribute active (yes).
  2. Assign groups to the organizational unit (with the attribute type of the group).
  3. Also, you can include new custom attributes to this membership relation, go to Metadata page and select the GroupUser to add these attributes.
  4. In the soffid parameters page, create a new parameter named soffid.entitlement.group.holder. It can have one of these three values:
    1. Set to optional enables the operator to set a group as the group holder for any entitlement assignment.
    2. Set to always to enforce that any entitlement assignment must be bound to a holder group.
    3. Set to none to disable this feature

Now you can start to apply this configuration to the users:

  • In the Users page, select a user.
  • In the Groups tab, add a new group.
  • In the Roles tab, add a new role and select the holder group in the optional scope.
  • If the holder group column is hidden, you can add with the option Add or remove columns.

Actions

Group type query

Add new

Allows you to create a new Group type. You can choose that option on the hamburger menu or clicking the add button (+).

To add a new Group type it will be mandatory to fill in the required fields

Delete

Allows you to remove one or more Group types by selecting one or more records and next clicking the button with the subtraction symbol (-).

To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.

Import

Allows you to upload a CSV file with the Group type list to add or update Group types to Soffid.

First, you need to pick up a CSV file, that CSV has to contain a specific configuration. Then you need to check the content to be loaded, it is allowed to choose if you want or not to load a specific attribute. And finally, you need to select the mappings for each column of the CSV file to import the data correctly and to click the Import button.

Download CSV file

Allows you to download a csv file with the basic information of all groups types. 

Group type detail

Apply changes

Allows you to save the data of a new Group type or to update the data of a specific Group type. To save the data it will be mandatory to fill in the required fields.

Delete

Allows you to delete the Group type. To delete a host you can click on the hamburger icon and then click the delete button (trash icon).

Soffid will ask you for confirmation to perform that action, you could confirm or cancel the operation.

Undo

Allows you to undo any changes made.