Specifying owners of a role

You can specify one or more owners of a role. The owners can be users or roles. You can specify owners of a role during role creation, or after a role is already created.

Before you begin

Depending on how your system administrator customized your system, you might not have access to this task. To obtain access to this task or to have someone complete it for you, contact your system administrator.

About this task

The result of designating people or roles as a role owner include:

In workflows, role owners can act as participants. In particular, in the approval workflow for assigning roles to users, role owners can act as participants.

In access control item (ACI) evaluations for management of roles, the role owner can act as a principal. This capability allows more than one person to share this delegated administrative responsibility. A special case of this scenario is when the role is an owner of itself. In that case, the members of the role can also be the administrators. You can set up a structure so that any member of the role can add other members.

In any of these scenarios, being a child or member of a child role of a role owner is equivalent to being a child or member of the role itself.

To specify roles and users that have ownership of the role, complete these steps:

Procedure

  1. On the Manage Roles page, complete these steps:
    • Click Refresh icon to load all roles.
    • Type name or description of the role in the Search box.
    • Click Filters icon, specify whether the search is done based on Service name, Role type or Membership type, and then click Apply filters. A list of roles that match the search criteria is displayed. If the list contains multiple pages, you can either click the arrow to go the next page, or, type the number of the page that you want to view and click Go.
    • In the Roles list, click the kebab menu (three vertical dots) next to the role that you want to modify, and then click Edit role to display the Role information page. Or, you can click on selected role and click Edit icon.
  2. Click the Owner section from Edit Page. The Role Owners and User Owners tables are displayed.
  3. Click Add to add owners to a list of role owners or user owners. You can select role owners, user owners, or a combination of both. The Select Roles or Select Users page is displayed.
  4. On the Select Roles or Select Users page, search for and select the owners to have ownership of the role, and then click Add.
  5. The added/ removed User and Role Owner is displayed on the page. Click Next and then Save.

Results

The Owner page is displayed, and the list of owners is updated in the Role Owners and User Owners tables.

What to do next

You can continue adding or removing owners of the role, or click Save.