Entitlement
About Entitlements
V-Suite users must be given permission to use V-Suite applications. In order to assign application permissions to a user, you must assign the user to a security group. The security group defines which applications and functions its members can utilize.
Jill, for example, is responsible for IT related tasks and is tasked to support V-Suite users. She is assigned to the "System Administrators" security group so that she can access system administration applications and functions. Herman is an engineer, he needs to be able to use engineering applications like the Knowledge Book. He is assigned to the "User" security group.
A user can be a member of multiple security groups. Security groups should not be confused with organization roles, a security group defines what its members can do, not which data its members can see or modify.
V-Suite comes with 3 pre-defined security groups, each equipped with a specific set of application permissions:
- System Administrators
- Project Administrators
- Users
The System Administrators group is a system defined security group and cannot be deleted or have its application permissions altered. |
Linked Security Groups
In addition to standard security groups, V-Suite offers Linked Security Groups, a dynamic solution to user entitlements.
Note: Linked Security Groups are accessible only in systems that have Single Sign-On (SSO) authentication configured. |
Linked Security Groups are associated with external directory systems, such as Active Directory. Instead of manually managing user memberships within V-Suite, these groups automatically synchronize their memberships based on the users present in the corresponding external directory group. When an external group is associated with a Linked Security Group, all of its members are automatically granted the permissions defined by that V-Suite group.
Highlights:
- Streamlined User Management - For organizations that maintain a large number of users across several applications, Linked Security Groups reduce the overhead of managing permissions by harnessing the existing structure of external directories.
- Dynamic Membership Updates - When personnel changes occur in an organization, such as on-boarding new members or reassigning roles, updating the external directory will automatically reflect the changes in V-Suite permissions without additional manual adjustments.
- Self-Registration for Group Members - Individuals who are part of the linked security groups can leverage the self-registration feature in V-Suite, facilitating quicker access and eliminating the need for manual user account creation by administrators.
- Automated Synchronization - V-Suite continually updates Linked Security Groups to match their external directory counterparts. Every 1 hour, an automatic sync checks for changes in external groups and adjusts V-Suite memberships accordingly.
Manage Security Groups
Security groups are managed via the Entitlement Application. The Entitlement Application can be accessed via the System Administration icon on the V-Suite home page.
You will not see the entitlement application if you are not entitled to use the application. |
The Entitlement Application presents a table showing all configured V-Suite security groups and Linked security groups. This table consists of these columns:
- Group Name - This column displays the name assigned to each security group.
- Description - Here, you'll find a brief description of the group, detailing its intended purpose or use within the system.
- Type - This indicates the kind of security group. It can either be 'Linked', which denotes a group associated with external directories (like Active Directory), or 'V-Suite', representing the standard security groups, native to the application.
- Action - Provides options to either edit or delete the security group.
In the Entitlement Application, you have the ability to: