Identification and Permission Management::Roles & Permission Definition

Roles & Permission Definition Aggregate Function defines roles types and possible permissions with rules according to roles.<br/>Roles catalogue consists in designing, creating, modifying and deleting role specifications. The aim is to identify the set of permissions (rights) that should be granted to any person who is assigned the role. Defining roles depends on processes and associated organization (internal or external), for example a fleet manager (external role) or a CSR level 1 (internal). As part of roles’ definitions, incompatibility in between roles or other types of constraints should also be specified. The purpose of a role is to ease the assignment of rights to a person by avoiding rights’ reassignment in case of re organization for instance.<br/>Permission catalogue consists in designing, creating, modifying and deleting permission specifications. A permission specifies the conditions to access a set of actions on an object. For example, in order to access all usage functions of a mailbox product the condition is to provide the correct password.<br/>