Skip to main content
Version: 2.75.x.x LTS

Provisioning of enterprise roles

The provisioning of information about the enterprise roles and their definitions itself has two modes. Transparent provisioning, i.e., an assigned enterprise role is handled as if the member application roles were assigned directly. Only the changes in authorizations of a user will be provisioned.

Example:

Existing data: user U, application A1 and A2, both with a role R, enterprise role ER. The enterprise role ER contains A1.R and A2.R as member roles. Then:

  • Assigning ER to U will generate two provisioning events of type "INSERT" for entity "Role": one for A1.R and one for A2.R.
  • Corresponding events would be triggered if the enterprise role was altered or unassigned.

The other mode (non transparent) also provisions enterprise role members and enterprise role authorizations.