Configuring Module Visibility
All RapidIdentity Portal modules support Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC) to limit module visibility to users or groups. Module visibility is configured in multiple locations.
The ability to limit visibility only to necessary users or groups provides enhanced security for each RapidIdentity Portal module and precludes the likelihood of undesirable RapidIdentity Portal actions from occurring.
Administrators can choose either RBAC or ABAC, not both, to limit visibility. Users or groups matching a particular role or attribute filter will have that particular module visible upon accessing RapidIdentity Portal. Users must also be a member of the corresponding access Roles defined.
RBAC or ABAC module visibility is configured in the Applications Settings.
 |
 |
Field | Description |
|---|---|
Role-based | Choosing this option enables RBAC upon saving one or more Roles. Roles must be added individually. The module is visible only to users of the specified Role(s). |
Attribute-based | Choosing this option enables ABAC upon saving an LDAP filter. The filter can by typed or built using the LDAP criteria builder. The module is visible only to users matching the specified LDAP filter. |