Creating a Permission Assignment What-if for a Role

A Permission Assignment What-if for a Role can be created to determine the impact of assigning new permissions to a role.

  1. Select Manage > What-ifs on the navigation bar and click New to select Access Management. The Access Management page is displayed.
    Note: Alternately, you can also click the arrow option to review the violations generated by a What-if and perform an action, if required. See, Reviewing details of a What-if.
  2. Specify this information:
    Insight
    The name of the Insight for which the What-if is created.
    Primary Object
    The primary object analyzed in this What-If. Possible values:
    • User
    • Role
    Select Role as the primary object for creating a Role Assignment Management What-if.
    Type
    The type of Access Management What-if created. Possible values:
    • Role Assignment Management
    • Permission Assignment Management

    Select Permission Assignment Management for this what-if.

    Data Source
    The data source linked to the selected Insight.
    Application Instance
    The application instance to stream live data for the analysis. All the application instances in the selected Master Application Instance is displayed.
    Role
    The name of the role to which permissions must be assigned.
    Analyze User Data
    The option to analyze all the existing roles assigned to users along with the new assignments.
    Comments
    Additional information for the what-if, if any.
    Rule Book Scope
    The rule books to be used for analysis.

    When you select the All option, all the Rule Books and Rules for the relevant ERP application are considered for the analysis.

  3. Click Add to add permissions to the selected role. You can also use this section to revoke or undo a permission assignment.
    Note: The Revoke and Undo options are displayed only when you select at least one assigned permission.
  4. Click Save to save the What-if.