Information systems
Description
Shows all the information systems configured on Soffid.
An information system is one of the main objects in Soffid. Each role and application entry point is bound to an information system.
Search Types
You can search for groups created in the system by applying different ways of searching:
Quick
This option allows quick search by fields that have been defined in the application metadata.
Basic
This is the default option. It provides some default search criteria, but other criteria can be added from the add criteria option.
Each search criterion will have different search forms depending on the type of data in the particular field. For example, a text field provide four different options to search, "Contains", "Start with", "End with" and "Equals", a date field provide the date "Since" and date "Until".
Each criterion will be added to the previous ones.
Advanced
This option allows an advanced search system using the SCIM standard.
You can access to SCIM Chapter for more information
Screen overview
&&TODO&&
Related objects
Custom attributes
Basics
- Type: information system category.
- Parent: parent within the hierarchy.
- Name: short name to identify the information system.
- Description: detailed description information system.
- Source: documentation.
- Owner: is the information owner, and has the capability to appoint security manager.
- Executable: documentation.
- Database: documentation.
- Owner name: documentation.
- BPM enable: if enabled, the information system could be assigned by workflows.
- Notification emails: this list will be notified on a daily about grants and revokes performed.
- Approval process: approval process defined
- Role definition process: role definition process. Advanced function for workflow.
- Single role: if checked, the roles of this application are mutually exclusive: if a user has the role X and want to assign him the role Y, X will be removed to give him Y.
Role Scopes
Role scope or domains are properties that can be assigned to some entitlements, limiting the scope of that entitlement. This can be used to limit, for instance, the maximum amount allowed for a money transfer, or the commercial zones to manage.
On this tab, you can add new domains, you must click the button with the add symbol and fill the information about the new domain. You can also delete a domain or update the domain information.
Another operation allowed are to download a CSV file with the domain data and to upload a CSV file to add new domains, update or delete existed domains
Roles
On the roles tab, you can create or delete roles. The effective privileges bound to each role is managed from each application.
To add a new role you must click the button with the add symbol (+) and fill all the role data.
It is also possible to delete roles from the role details or by selecting one or more records from the list and clicking the button with the subtraction symbol (-).
Additionally you can download a CSV file with the roles information and you can also upload a CSV file to add new roles, modify or delete existing roles.
Users
On the users tab, you can view all the user assigned to the application. The information shown includes:
- Name
- Full name
- Group: primary group of the user
- Role: role of the application that the user is assigned.
- System: application
- Domain value
- Recertification: shows the date when the recertification process was performed, which confirms that the user should have access to the application.
It is allowed to download a CSV file with all the user data.
Actions
Information system query
| Query | Allows to query groups through different search systems, Quick, Basic and Advanced. |
| Add or remove columns | Allows to show and hide columns in the table. |
| Add new | Allows to create a new information system. |
| Add child information system | Allows to add a child to a specific information system. |
| Import | Allows to upload a csv file to add, update or delete information systems. |
| Download CSV file | Allows to download a csv file with the basic information of all information systems. |
Information system detail actions
| Apply changes | Allow to create an information system or to update an exist information system. |
| Delete | Allow to delete an information system. |
| Undo | Allows to quit without applying any changes. |
Role scopes actions
| Add domain | Allows to add a new domain. |
| Import | Allows to upload a CSV file with the información about domains to add update or remove domains. |
| Download CSV file | Allows to download a CSV file with all the information about domains. |
Roles actions
| Add or remove columns | Allows to show and hide columns in the table. |
| Add new | Allows to create a new role. |
| Delete | Allows to delete roles. |
| Import | Allows to upload a csv file to add, update or delete roles. |
| Download CSV file | Allows to download a csv file with the basic role data |
In addition for each role you can perform the specific operations defined on the Role page
Users actions
| Download CSV file | Allows to download a CSV file with all the information about users. |