This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
KennethHeinbock
Contributor
Contributor
ā€Ž2018-11-01 12:33 PM

what is the User Self Modification Role, what is the User Self Modification Role

Jump to solution

what is the User Self Modification Role in Authentication Manager version 8.x ?

0 Likes
Reply
1 Solution

Accepted Solutions
EdwardDavis
Employee
Employee
In response to KennethHeinbock
ā€Ž2018-11-01 02:09 PM

Jump to solution

OK, I see it now, it is hidden inside my database. 

 

It's purpose: "Dynamically associated with all users by the system to enable them to modify their details through trusted applications, for example, RSA Self-Service. This role cannot be modified, deleted, or unassigned for a user."

 

All users have this role. It's just part of the 'plumbing' so to speak.

View solution in original post

Reply
3 Replies
EdwardDavis
Employee
Employee
ā€Ž2018-11-01 12:49 PM

Jump to solution

EDIT: I have the answer in a later post below

-----------------

Original: Roles on Authentication Manager are Administrative Roles, and the built-in roles make no mention of User Self Modification.

Unless you mean a highly restricted custom admin role ? Or perhaps AM Prime SSP ?

 

Perhaps you mean allowing users access to the self-service console where a user can change or modify specific identity attributes ? example: here I will allow users to be able to change their first name

pastedImage_1.png

0 Likes
Reply
KennethHeinbock
Contributor
Contributor
ā€Ž2018-11-01 01:25 PM

Jump to solution

the admin role "User Self Modification Role" does not show up in the AM security console but if I run a SQL query for AM admin roles it does show up

User Self Modification Role               | f
 000000000000000000001000e0031001 | 000000000000000000001000e0011000 | Administrative Role used by the SYSTEM for Trusted Realm Command Execution

I assume this is a built in admin role that is used by the system and cannot be assigned to an administrator.

0 Likes
Reply
EdwardDavis
Employee
Employee
In response to KennethHeinbock
ā€Ž2018-11-01 02:09 PM

Jump to solution

OK, I see it now, it is hidden inside my database. 

 

It's purpose: "Dynamically associated with all users by the system to enable them to modify their details through trusted applications, for example, RSA Self-Service. This role cannot be modified, deleted, or unassigned for a user."

 

All users have this role. It's just part of the 'plumbing' so to speak.

Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.