Viewing roles
You can access the Roles app via the self-service menu. You may also receive an email notification containing a link to view a particular role. Once in the self-service Roles app, you can view all assignable roles and all your memberships.
Upgrade note
The Roles app is enabled by default as of Bravura Security Fabric 12.7. In previous versions, administrators must install and configure applicable components.
To access the Roles app from the self-service main menu:
Under RESOURCES, click Roles.
Your role memberships are shown in Card view by default.
Click the
icon in the top right corner of the middle panel to switch to Table view.
Click My memberships in the Filter panel to view roles that you own.
Click All in the Filter panel to view all roles managed by Bravura Security Fabric (as shown in 1. above).
Select one or more roles from the Results panel , then select an action from the Actions panel .
The actions available depend on the roles selected and the permissions of the user.
From the Roles app, depending on the user classes you are a member of, you will be able to generate requests to:
Assign role memberships
Revoke role memberships
Create roles
Update roles
Delete roles
Once the requests are created, they follow the regular workflow process and will need to be authorized (by default, by someone who is part of the ROLE_AUTHORIZERS user class).
The requests listed above will use the authorization configuration from the role involved in the request. For the ROLE_CREATE PDR, because the role does not yet exist, authorization can be handled in the im_policy_authorization table by associating the PDR (PDRId) to the authorizer user class (AuthUserclass) or can be tailored to your needs.
