Managing users and groups from the Business console

You can manage groups and users from the Business console. You must declare users in the Decision Center database so that they are consistent with the user registry that the application server uses to authenticate access to Decision Center.

The application server authenticates access to Decision Center to the specified users from its registry and gives them the rights of a basic user (rtsUser role). You must then declare these same users to the Decision Center database so that they can be:
  • Assigned to Groups, for security on branches (decision services, releases, and activities), and finer-grained permissions on the different types of rule artifacts (see Decision Center security).
  • Visible as participants in the decision governance framework (see Governance principles).

If your user registry is not an LDAP directory, you can create users manually in the Business console. In this case, whenever you add a user to your authentication registry, you create the same user in the Decision Center database through the Users tab. Some information on how users are set up in the sample server is available in Opening Decision Center on the sample server.

However, you typically declare users by importing them from LDAP directories. Depending on your configuration, you access the Business console in one of three modes. Each mode provides specific options to import users and groups from LDAP directories.