Skip to main content
Skip table of contents

Delegated administration

Delegated administration enhances flexibility and control over persona management within the TrustBuilder platform. Admins can delegate persona management, allowing users to oversee and manage other users' personas within their assigned scope.

Setting up Delegated administration

There are two ways for admins to set up delegated administration:

Using “Delegated Admin” persona (system persona)

As “Delegated Admin” is a system persona, its properties cannot be modified.

To delegate persona administration through a system persona, you should assign “Delegated Admin” persona to a user with a specific duration and scope.

  1. In TrustBuilder Admin portal, go to Identity Management > Users.

  2. Edit the user profile to be assigned to the persona.

  3. Go to Personas tab > +Add Persona.

  4. Select Delegated Admin persona and click on Next step.

    image-20240701-100026.png
  5. Define this persona's parameters for this user:

    • Preferred persona: (Optional) Set as preferred.

    • Persona details: Define the validity period.
      If left empty, the assignment becomes effective immediately upon saving the form and remains valid indefinitely.

    • Persona scope: Add persona scope value(s).
      Scopes can be any value. However, we recommend that you use values that make sense and are consistent. For example: scope values based on the location (Belgium, France, Italie, Spain), on the department (marketing, IT, sales, HR,…), on a number (scope1, scope2, scope3,…).
      The scope values added here must match the scope values defined in the personas of the users to be managed.

      image-20240701-100233.png
  6. Click on Save.

The Delegated Admin persona has been assigned to the user with a specific scope.

image-20240701-100446.png

Based on the defined validity, the user will be able to manage users personas within the specified scope, from its Self Service Portal.
See Self-Service Portal documentation

Using Delegation parameters in any persona

To delegate persona administration trough delegation parameters in a persona, you should first enable and configure delegation in a persona definition and then assign this persona to a user with a specific duration and scope.

Step 1: Enable and configure delegation in persona definition

  1. In TrustBuilder Admin portal, go to Identity Management > Persona Definitions.

  2. Create or edit a persona definition.

  3. In the Delegation parameters in the persona definition:

    • Toggle to Authorize delegation.

    • Select the persona(s) that can be delegated.

      image-20240701-132844.png
    • Click on Save.

Step 2: Assign the persona to the user

  1. In TrustBuilder Admin portal, go to Identity Management > Users.

  2. Edit the user profile to be assigned to the persona.

  3. Go to Personas tab > +Add Persona.

  4. Select the persona with delegation enabled and click on Next step.

  5. Define this persona's parameters for this user:

    • Preferred Persona: (Optional) Set as preferred.

    • Persona details: Define the validity period.
      If left empty, the assignment becomes effective immediately upon saving the form and remains valid indefinitely.

    • Persona scope: Add persona scope value(s).
      Scopes can be any value. However, we recommend that you use values that make sense and are consistent. For example: scope values based on the location (Belgium, France, Italie, Spain), on the department (marketing, IT, sales, HR,…), on a number (scope1, scope2, scope3,…).
      The scope values added here must match the scope values defined in the personas of the users to be managed.

      image-20240227-145443.png
  6. Click on Save.

Based on the defined validity, the user will be able to manage users personas within the specified scope, with the specific personas from its Self Service Portal.
See Self-Service Portal documentation

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.