Manage members
Members are users of Identity as a Service. User membership to groups, their roles, and assigned user attributes determine that IDaaS features available to them. This section provides instructions on setting up and managing users, user attributes, user roles, and user groups. Your role and group assignment determines the users you can manage. You can only manage users in the groups to which you belong.
Topics in this section
Add users to Identity as a Service
8 items
Create and manage groups
An Identity as a Service group is a collection of users. You can assign or remove groups assigned to users in the groups that your role can manage. If your role allows you to Manage All Groups (see Create, assign, and manage roles), you can create as many groups needed to control which users can access applications on Identity as a Service.
Create and manage organizations
An organization is an entity in IDaaS to which users can be associated. An IDaaS user can belong to one or more organizations. When the user authenticates using SAML or OIDC, the authentication response indicates the organizations to which the user belongs. Organizations can then be returned from an OIDC and OAuth as claim values or a SAML application as attribute values, as follows:
Create and manage user attributes
User attributes are the information fields in a User Profile. There are two types of attributes in Identity as a Service:
Create, assign, and manage roles
Roles control the operations that a user can perform in their Identity as a Service account. A role defines a list of system entities and permissions for those entities. System entities identify different Identity as a Service management areas. For example, a user assigned the User Passkey/FIDO2 Token Management entity can view, add, edit, remove, or perform all actions on a Passkey/FIDO2 token, depending on the permissions assigned to that role.