Identity Governance (IG): Composite authorization - combining permission and data set views

In many ERP and CRM systems the authority model is made by a combination of a general permission eg. read, write, delete etc. and the data set or data view for which the permission is granted. The same applies to hierarchical file access control eg. read access to a specific folder including subfolders and files.

This model is difficult to implement in the current IG.

It would be helpful to be able to manage composite authorizations models by being able to combine a general permission with a data set view.

In Denmark we have another use case in the public sector. Many systems made for the municipalities have an authorization model combining general permissions like read, write, delete etc. with KLE numbers which defines which dataset in the application the permission is valid for.

by: Ken W. | over a year ago | Configuration

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

3

Composite authorization - combining permission and data set views

Comments