Configuring roles

Configuring roles in Veriam can easily be done from the 'Role based' page under the 'Access control' menu.

This page lists all currently configured roles which can be viewed and edited from here.

To create a new role:

1. Click the '+ Create role' button.

2. Fill in the External Name. This is the name that users of your system will see when they have the role assigned. This value is copied automatically to the Internal Role Name, but this can be adjusted if you want to use a different role name for your own usage.

3. Fill in an External description. Users that get the role assigned will see this description. This is the way to provide some context to what the role means.

4. The 'Role name for OIDC Claim' field gets populated automatically based on the External name. This is the role name that will be return in the OIDC Claim to your application when a user with this role logs in. You can adjust this role to match what your application already knows.

That's it! Click Save to save your role and publish the changes for the role to become available to assign to users or accounts.

Optionally, you can add one or more Filters to the role, to further specify when the role is applicable. This can for instance be useful if you have multiple applications and this role is only valid for one of those applications.

You can also use more fine-grained permission management by adding Permissions to your role as described in the next section.