Introduction
The Membership node allows system admins and application admins to manage the members and/or memberships of users, groups, and roles. Using roles and groups allows you to set permissions and restrictions for members in bulk, saving time and effort.
While role and group both refer to a set of members (users, other groups, or other roles) with defined permissions, access, and/or capabilities, the difference is that roles are defined in Kepion, and groups are defined in Windows Active Directory (AD) or Azure AD.
This article covers:
- Navigating to the Membership node.
- The basics of members and memberships.
- The Membership node's layout and functionality.
Tip: Explore other ways administrators can customize and configure applications and apps here.
Navigation
Follow the instructions below to go to the Membership node.
1. Go to Administrator and select an application.
2. Go to Membership using the left navigation.
You will land on this page:
Membership basics
Before configuring memberships, it is key to know how they function in Kepion. The diagram below shows the possible relationships among users, groups, and roles:
- A user can be a member of one or more roles and groups.
- A group can be a member of one or more roles and groups.
- A role can be a member of one or more roles.
You can, therefore, nest members to assign and remove permissions, restrictions, and workflow participants in bulk.
Manage members and memberships
Use the Configure dropdown to select the user, role, or group that you want to manage members and/or memberships for.
Tip: Learn more about managing users and groups here.
User
A user is an individual account, which can be added to Kepion from your local machine, Active Directory, Azure Active Directory, or other identity providers. You can also create custom users to test configurations, permissions, restrictions, etc. Learn more.
Role
A role is a set of members (users, groups, or other roles) that need the same level of permissions, access and/or capabilities. Role membership is managed in Kepion. Learn more.
Group
A group is a set of members (users or other groups) that exists in the Active Directory or Azure Active Directory. Group membership is managed in Active Directory or Azure Active Directory and populated to Kepion using the AD Sync feature. Learn more.