Access Control

Overall Access Control for the various modules can be set under the Settings category in the General Configuration area within the Configuration Module of RapidIdentity. These settings allow Administrators to determine which modules are accessible through RapidIdentity for RapidIdentity Users. The settings include:

• Selecting a level of access control

• Specifying Roles that have that level of access (utilizing Groups from the Groups Module)

• Specifying an LDAP filter to determine access

Setting Access Control

To set the access control for a particular Module, click on the three vertical dots next to the module name, then choose EDIT.

After clicking the Edit option, a form will appear:

In the form, the options are:

• None (no access control enforced - any authenticated RapidIdentity user can see this module) DEFAULT

• Role-Based (Specify one or more groups within the RapidIdentity Groups Module to determine access control)

• Attribute-Based (Specify an LDAP filter to determine access control)

As an example, the following shows that only the Tenant Administrator Group would be able to access the Notifications area within RapidIdentity, and only HHudson@idautodemo.com would be able to access the Files Module: