Creating a Permission Assignment What-if for a Role
A Permission Assignment What-if for a Role can be created to determine the impact of assigning new permissions to a role.
-
Select Manage > What-ifs on the navigation bar and click New to select Access Management. The Access
Management page is displayed.
Note: Alternately, you can also click the arrow option to review the violations generated by a What-if and perform an action, if required. See, Reviewing details of a What-if.
-
Specify this information:
- Insight
- The name of the Insight for which the What-if is created.
- Primary Object
- The primary object analyzed in this What-If. Possible values:
- User
- Role
- Type
- The type of Access Management What-if created. Possible values:
- Role Assignment Management
- Permission Assignment Management
Select Permission Assignment Management for this what-if.
- Data Source
- The data source linked to the selected Insight.
- Application Instance
- The application instance to stream live data for the analysis. All the application instances in the selected Master Application Instance is displayed.
- Role
- The name of the role to which permissions must be assigned.
- Analyze User Data
- The option to analyze all the existing roles assigned to users along with the new assignments.
- Comments
- Additional information for the what-if, if any.
- Rule Book Scope
- The rule books to be used for analysis.
When you select the All option, all the Rule Books and Rules for the relevant ERP application are considered for the analysis.
-
Click Add to add permissions to the
selected role. You can also use this section to revoke or undo a permission
assignment.
Note: The Revoke and Undo options are displayed only when you select at least one assigned permission.
- Click Save to save the What-if.