[midPoint] Automatic role assignments
Aivo Kuhlberg
aivo.kuhlberg at rmit.ee
Tue Jun 14 13:36:19 CEST 2016
Hi,
I would like to create automatic role assignments for users based on the organization unit where each user belongs to. The mechanism should have following functionality:
1. When user is added to midPoint s/he will get automatic roles assigned based on the org unit where s/he belongs.
2. When user moves to another organization unit then the automatic roles should be reassigned (old org unit automatic roles removed and new org unit automatic roles assigned).
3. When existing automatic role is added/changed/deleted the change should be reflected in all users' automatic roles.
4. Automatic role assignments should be related with organization hierarchy - eg. top-level org automatic role A will be assigned to all users who belong to top-level and its child organizations. Child org automatic role B should be assigned to only child org users.
Is it possible to implement this setup or at last part of it in midPoint 3.3.1 (or 3.4)? What is the suggested way to implement this?
Thanks,
Aivo Kuhlberg
________________________________
Käesolev e-kiri võib sisaldada asutusesiseseks kasutamiseks tunnistatud teavet.
This e-mail may contain information which is classified for official use.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160614/0bba7a0e/attachment.htm>
More information about the midPoint
mailing list