Customize Administrative Roles for Provisioning

Provisioning includes the following predefined administrative roles, which you can customize.

  • Token Administrator. Imports and manages tokens, and assigns tokens to users.

  • Request Approver. Approves, updates, and rejects Self-Service provisioning requests including new user accounts, user group membership, and token requests.

  • Token Distributor. Manages token provisioning requests. Determines how to assign and deliver tokens to users.


  1. In the Security Console, click Administration > Administrative Roles > Manage Existing.

  2. Click the provisioning role that you want to customize, and select Edit.

  3. On the Edit page use the options on the tabs to customize the provisioning role.

  4. (Optional) Click the Control/Summary tab to view a summary of your selections.

  5. Do one of the following:

    • To save this role and customize another one, click Save.

      The system displays a confirmation message on the Edit page.

    • To save this role and exit, click Save and Finish.

      The system displays the Administrative Roles list page.