Nexus' software components have new names:

Nexus PRIME -> Smart ID Identity Manager
Nexus Certificate Manager -> Smart ID Certificate Manager
Nexus Hybrid Access Gateway -> Smart ID Digital Access component
Nexus Personal -> Smart ID clients

Go to Nexus homepage for overviews of Nexus' solutions, customer cases, news and more.


Skip to end of metadata
Go to start of metadata

This article describes how to view, assign and withdraw permissions for users and roles in Smart ID Identity Manager


Expand/Collapse All

Step-by-step instruction

 Log in to Identity Manager Admin
  1. Log in to Identity Manager Admin as Administrator.
 Open user or role to view or edit

To view or edit permissions of an individual user:

  1. In Identity Manager Admin, go to Home > User Administration
  2. Double-click a user name in the list.
    The user settings are shown. 

To view or edit permissions of a role:

  1. In Identity Manager Admin, go to Home > Roles.
  2. Double-click a role name in the list.

    The role settings are shown. 

 For roles: Limit access to certain instance IDs

Roles in Identity Manager can be configured to only access certain Identity Manager instances, by using the instance ID setting. 

To limit a role to access only certain instances:

  1. In Instance Ids, enter a comma-separated list of instanceIDs as configured in the system.properties of each instance. 

    Example: Instance Ids

    Instance Ids = internet, intranet

    If the field is left empty, then all instances are allowed.
    For information on how to configure instanceIDs in system.properties, see Limit role to access certain instances of Identity Manager client.

 Set permissions for user or role

To edit permissions of individual users or roles:

  1. In the user or role settings, select tab. For more information, see the table below. 

  2. Check or uncheck permissions as needed. 

  3. Click Save.  

Permissions are grouped in these tabs:

TabDescription
GeneralHere you can assign and withdraw permissions to access larger functional areas of Identity Manager Admin and Identity Manager operator UI. Functional areas for which a user has no permission are hidden.
Process PermissionsHere you can assign and withdraw permissions to start individual processes in Identity Manager operator UI (that is, Execute) and to edit their configuration in Identity Manager Admin (Update or Delete).
FormsHere you can assign and withdraw permissions to read (Read) and edit (Update or Delete) the configuration of individual forms in Identity Manager Admin.
Identity TemplatesHere you can assign and withdraw permissions to access (Read) data objects of particular categories in Identity Manager operator UI. The categories are determined by the identity templates.
Search ConfigurationsHere you can assign and withdraw permissions to use (that is, Execute) the individual search configurations in Identity Manager operator UI.

This article is valid for Smart ID 20.11.2 and later. 

Related information