Skip to main content

Groups

Description

Groups is the convenient way to apply policies to a collection of users. Groups allow administrator users to specify permission for multiple users in a quick and easy way. Groups are managed in a hierarchical way. A user can belong to a group, that user will be assigned the roles of this group and all the roles that this group inherits from its parent.

Companies are organized in different business units, departments or workgroups. In Soffid, they all are named as groups. Some systems, like Active Directory, use the groups to control or restrict access to resources. A Soffid Group is more like an Active Directory OU.

Screen overview

&&TODO&&

Related objects

  1. User
  2. Roles

Standar attributes

Basic

On the basic group tab, you can view all the group attributes. It is allowed to add new groups,  update or delete existing groups.

  • Name: short name to identify the group. Group name must be unique.
  • Description: a brief description of the group.
  • Drive letter: if specified, a shared folder for this user will be created. This shared folder can be mounted on ESSO hosts by using a startup script.
  • Parent group: name of the parent within the hierarchy. Only the root group doesn't have value. Be in mind the groups have a tree structure.
  • Type: a group can be categorized by grouporganizational unit types. You have more information about Group Type page.
  • Drive server name: the server where the shared folders can be located.
  • Disabled: allows you to enable and to disable the group. When a group is disabled, the group's role hierarchy is no longer available to the group's users.

Users

Administrator users can manage the users who belong to the group. These users will have assigned all the permissions granted to that group and permissions inherited from its parent.  

On the user's tab, you can add new users to the group by clicking the button with the add symbol (+), you must select the user to add, and select the membership properties.

It is also allowed to delete one or more users from a specific group, you can do it from the group membership details or by selecting one or more records from the list and clicking the button with the subtraction symbol (-).

Additionally, you can download a CSV file with the users information and you can also upload a CSV file to add new users, modify or delete existing users.

Granted roles

Administrator users can manage the permissions to a group, this is the way to establish an access policy to a collection of users. The users who belong to a group will inherit all the permissions granted of that group.

On the granted roles tab, you can assign or revoke roles to the group. To assign a new role, you must click the button with the add symbol (+), then select the role,  in some cases specify the scope, and finally set membership properties. To revoke role, you can do it from the group membership detail or by selecting one or more records from the list and clicking the button with the subtraction symbol (-).

Additionally, you can download a CSV file with the granted roles information and you can also upload a CSV file to assign roles, modify or delete assigning roles.

Managers

&&TODO&&

Actions
Group query actions

Query

Allows you to query groups through different search systems, Quick, Basic and Advanced.

Add or remove columns

Allows you to show and hide columns in the table.

Add new

Allows you to create a new group in the system. To add a group it is necessary to fill in the required fields

Add child group

Allows you to add a child to a specific group. To add a chind it is necessary to fill in the required fields

Import

Allows you to upload a csv file to add, update or delete groups.

Download CSV file

Allows you to download a csv file with the basic information of all groups. 

Group detail actions

Apply changes

Allows you to create a new group or to update an existing group.

Delete

Allows you to delete a specific group.

Undo

Allows you to quit without applying any changes.

Users

Add or remove columns

Allows you to show and hide columns in the table.

Add new

Allows you to add a new user to the group. 

Remove

Allows you to remove one or more users from the group. 

Import

Allows you to upload a CSV file with the información about users to add update or remove that users.

Download CSV file

Allows you to download a CSV file with all the information about users. 

Granted roles

Add or remove columns

Allows you to show and hide columns in the table.

Assign role

Allows you to assign a role to the group. 

Revoke role

Allows you to revoke one or more roles from the group. 

Import

Allows you to upload a CSV file with the información about roles to assign or revoke that roles.

Download CSV file

Allows you to download a CSV file with all the information about roles assigned to the group.