IDM Identity Manager
Application | IDM |
Role | Identity Manger |
Description | Grants the ability to manage Identities / Direct Report’s |
Objective
The Identity Manager role is able to view and manage users that report directly to them.
Access
IDM | Watch List | Configuration | Reports |
|---|---|---|---|
Limited Access | NO Access | NO Access | No Access |
Access Modifiers
Access to view Identities is limited to only sub-ordinates managed by the Identity Manager.
Additionally, access to edit Identities requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked.
Screens
Screen | Functionality | Access Rights (Yes = ✓ or No) | Limitation |
|---|---|---|---|
Identity | Add Identity | No | |
Identity | View Identity | ✓ | Only Identity Details, Managed Identities, Employment Details, Address Details and Citizenship Details (provided not set to Hide in Screen Configuration) for their own record. |
Identity Details | Edit Name | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Employment Info | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Identity Type | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Location | No | |
Identity Details | Edit Email Addresses | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Phones | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Photos | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Roles | No | |
Identity Details | Edit Manager | No | |
Identity Details | Login Credentials | No | |
Identity Details | Edit Employment Details | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Address | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Edit Citizenship Details | ✓ | Limited to their subordinates and requires Allow Managers to view and edit their direct report’s records in Configuration > Other Settings to be ticked. |
Identity Details | Send Manage Credentials Request | No | |
Identity Details | Remove Web Access | No | |
Identity Details | Suspend Identity | No | |
Identity Details | Terminate Identity | No | |
Identity Details | Delete Identity | No | |
Identity | Upload Identities | No | |
Identity | Add Visitors | No | |
Identity | Edit Visitors | No | |
Identity | Delete Visitors | No | |
Identity | Upload Visitors | No | |
Reports | Run Reports | No | |
Reports | Saved Reports | No | |
Watch List | Add Suspect | No | |
Watch List | View Suspect | No | |
Watch List | Edit Suspect | No | |
Watch List | Edit Photo | No | |
Watch List | Delete Suspect | No | |
Configuration | Building Management | No | |
Configuration | Company Management | No | |
Configuration | Settings | No | |
Configuration | Shared Access Signatures | No | |
Configuration | Notifications | No | |
Configuration | Third Party Authentication Settings | No | |
Configuration | Screen Configuration | No | |
Configuration | Theme Settings | No | |
Configuration | User-Defined Fields | No | |
Configuration | IDM Importer | No | |
Configuration | Partition data by Company | No | |
Configuration | Identity Expiration | No | |
Configuration | SMTP Configuration | No | |
Configuration | Card Types | No |
Additional Access
Application | Screen | Functionality | Access Rights (Yes = ✓ or No) | Limitation |
|---|---|---|---|---|
IDM | My Profile | View Page | ✓ | |
IDM | My Profile | Edit User Preference | ✓ | Preferred Language’ and Page Size for List Views Able to add / edit Manager Delegate |
GUEST | No Access | No Access | No | If GUEST > Configuration > System > Default User Role = None then no access granted. (Not authorized to access GUEST displayed.) |
GUEST | New Visit My Visits | Schedule New Visits View Scheduled Visits | ✓ | If GUEST > Configuration > System > Default User Role = Host or Host Delegate then access is the same as the configured Default User Role. |
GUEST | Visit Approval | Approving Visits | ✓ | Additional access If Identity Manager is added to at least one Visit Approval Workflow and if Visit Approval in Configuration is switched ON. |
CONNECT | Requests | Access My Access Request History Credential/Badge | ✓ | |
CONNECT | Identities | Notes Credentials Access | ✓ | For their Managed Identities only, able to view Identity Information and Edit Notes. Credentials and Access functionality limited by whether Identity Manager Permissions in CONNECT > Configuration > General has been set to Read only, Delete only or Add, edit, and delete for Credential Rights, and Read only or Delete only for Access Rights. |
CONNECT | Requests | Manage Access requests | ✓ | Additional access If Identity Manager is added to at least one Access Request Approval Workflow. |
CONNECT | Requests | Manage Credential/Badge Requests | ✓ | Additional access If Identity Manager is added to at least one Credential Request Approval Workflow. |