IGA 2021.11.0

Manage Roles

The IGA supports the ability to manage (create, edit, and delete) user roles.

Add a New Role

  1. Log in to the IGA UI.

  2. Click Roles.

  3. On the New Role modal, enter the following information:

    • Name. Enter a name for the role. This is a required field.

    • Description. Optional. Enter a description for the role.

  4. Click Next.

  5. On the Dynamic Role Assignment modal, enable A conditional filter for this role. Enter the rules to filter this role.

    1. Click Any and select either Any or All to apply the conditions to the user.

    2. Click Username and select any user property for the rule.

    3. Click contains and select contains|does not contain|is|is not|is present|is not present|starts with|does not start with|.

    4. Enter the property for the condition.

    5. If you want to add more filters, click +, and repeat the previous steps.

  6. Click Next.

  7. On the Time Constraint modal, enable An array of temporal constraints for a role.

    1. For Start, select the date and time to begin the time period where the role is active.

    2. For End, select the date and time to end the time period where the role is active.

    3. For Time Zone Offset, enter the GMT offset. If you are not sure, click Time Zone Charts.

  8. Click Save.

Edit Role Details

  1. On the Roles page, review the Details. If you need to make changes, edit the entries.

  2. Click Save.

Role Members

  1. On the Roles page, click Role Members.

  2. Click Add Role Members.

  3. On the Add Role Members modal, select or enter the members to whom you should assign.

  4. For Time Constraint, enable Assign role only during a selected time period if you want to have the role assigned for a specific timeframe.

    1. For Start, select the date and time to begin the time period where the role is active.

    2. For End, select the date and time to end the time period where the role is active.

    3. For Time Zone Offset, enter the GMT offset. If you are not sure, click Time Zone Charts.

  5. Click Save.

Role Settings

  1. For Condition, click Set up to enter conditional filters for this role.

  2. On the Condition modal, enable A conditional filter for this role to enter conditional rules.

    1. Click Any and select either Any or All to apply the conditions to the user.

    2. Click Username and select any user property for the rule.

    3. Click contains and select contains|does not contain|is|is not|is present|is not present|starts with|does not start with|.

    4. Enter the property for the condition.

    5. If you want to add more filters, click +, and repeat the previous steps.

    6. Click Save.

  3. For Temporal Constraints, click Set up to enter time constraints for the role.

    1. For Start, select the date and time to begin the time period where the role is active.

    2. For End, select the date and time to end the time period where the role is active.

    3. For Time Zone Offset, enter the GMT offset. If you are not sure, click Time Zone Charts.

    4. Click Save.

Raw JSON

  1. On the Role page, click Raw JSON. The summary of your role’s inputted information appears in raw JSON, so that you can export it to your other applications.

  2. Click Copy JSON. The JSON is copied to your clipboard.

Delete Role

  1. On the Role page, scroll down any of the roles page, and click Delete Role.

Once you click Delete Role, you cannot undo the command.
Copyright © 2010-2025 ForgeRock, all rights reserved.