Skip to main content

Group Type

Description

Companies are organized in different business units, departments or workgroups. In Soffid, they all are named as groups. These group can be categorized by a group type.

Group types can be used in the definition of Holder Groups. Some roles can be assigned to a user only through a group enabled for it. When a user no longer belongs to a group, it is not allow assign that role to the user.

A user always belongs to a user type, but groups do not necessarily have to belong a group type.

Screen overview

&&TODO&&

Related objects

  1. Group
  2. User

Standard attributes

  • Name: name (or code) of the organizational unit.
  • Description: description of the organizational unit.
  • Role holder: (yes|no), when this attribute is active (yes), all the groups of this type of organizational unit could be assigned to a user as a domain of a role.

Role holder (and holder group)

In some organizations is necessary to assign roles that affect only a part of the structure, for instance, a department, a division or a country.

The role holder is the role that requires to be assigned to a group, and the holder group is the group that can be assigned role permission.

To configure correctly this functionality you have to apply the next steps:

  1. Create at least one organizational unit with the role holder attribute active (yes).
  2. Assign groups to the organizational unit (with the attribute type of the group).
  3. Confirm or add the parameter: soffid.entitlement.group.holder, the value is indifferent (in the Soffid parameters page).
  4. Also, you can include new custom attributes to this membership relation, go to Metadata page and select the GroupUser to add these attributes.
  5. In the soffid parameters page, create a new parameter named soffid.entitlement.group.holder. It can have one of these three values:
    1. Set to optional enables the operator to set a group as the group holder for any entitlement assignment.
    2. Set to always to enforce that any entitlement assignment must be bound to a holder group.
    3. Set to none to disable this feature

Now you can start to apply this configuration to the users:

  • In the Users page, select a user.
  • In the Groups tab, add a new group.
  • In the Roles tab, add a new role and select the holder group in the optional scope.
  • If the holder group column is hidden, you can add with the option Add or remove columns.

Actions

Group type query

Add new

Allows you to create a new group type in the system. To add a group type it is necessary to fill in the required fields. 

Delete

Allows you to remove one or more groups type by selecting one or more records.

Import

Allows you to upload a csv file to add, update or delete groups types.

Download CSV file

Allows you to download a csv file with the basic information of all groups types. 

Group type detail

Apply changes

Allows you to create a new group type or to update an exist group type.

Delete

Allows you to delete a specific group type.

Undo

Allows you to undo any changes.

 

 

Back to top