Defining role mappings

Use this procedure to configure role mappings for a grid.

Note: When IFS and SAML authentication are used, role assignment to users should be performed in IFS. Applications will create role mappings from IFS roles to the corresponding grid roles programmatically. Manual grid role mappings in this scenario should be kept to a minimum.

The grid role mapping is a way to transform existing groups, roles or usernames from the user repository into grid roles and grid application roles.

You can configure role mappings belonging to a particular application on a configuration manager page belonging to that application (a page with an application centric focus) or you may configure role mappings on a global page enabling you to operate on all application defined roles including the ones defined by the ION Grid itself (grid-admin, grid-poweruser, grid-user, and grid-all-app-admin). Which is best for you depends on the situation.