On this page
The Curity Identity Server provides a DevOps Dashboard. One of its main features is to enable employees to manage your customer users, who login to your apps. More generally it enables large organizations to provide teams with limited privileges to administer the identity and access management (IAM) system. This can be done without exposing full administration capabilities. See the DevOps dashboard webinar for a video overview.
One of the main features of the dashboard is to administer user accounts from a data source. This provides a fast way to precreate application users when getting started with the Curity Identity Server, or in scenarios where end users cannot register themselves:
In the following example, a DevOps employee called
johndoe is administering a customer user called
Employee Authorization via Groups
When granting access to employees, categorize them into groups based on the levels of access you want to grant. In the following screenshot, members of the
developers group are given limited privileges, to only access OAuth clients:
A member of the developers group can then read or edit clients, and work with scopes and claims, depending on the permissions granted. The dashboard also provides a simplified wizard for creating OAuth clients in a developer focused manner:
Permissions can be granted in a manner that scales up to departmental boundaries, or down to individual clients. This enables larger organizations to distribute access based on levels of experience or trust:
If an employee has insufficient permissions, and the data shown is sensitive, then permission will be denied:
In other cases, the user may be able to attempt an edit, such as creating a new scope, and will receive a forbidden error upon trying to save:
In the event of temporary problems, you can enable multiple teams to help diagnose the cause. The alarms feature provides problem details, and in some cases, the teams who work on the applications impacted may be best able to advise on resolution actions:
The DevOps dashboard provides additional administration options for the Curity Identity Server. Use it to administer your end users, or to distribute your security management. To get started using the dashboard, follow the DevOps Dashboard User Administration tutorial.