A new employee starts at a company. As part of the onboarding process, the employee should be assigned to several groups for activities in a subject area in their team so that they can work to their full potential.
Now the idea would be to define a role for the subject area that contains all the necessary groups so that the new employee only has to be assigned this role in order to be able to work directly.
Is this already implemented in Authentik? If not, I would very much like to suggest this.
The necessary steps would be
role creation
It must be possible to create a role with the attributes:
Role name
Role description
Role manager
AD groups can be added
It must be possible to add (AD) groups to these roles.
users should be able to be assigned roles
The user IDs of employees may be assigned roles.
plannable assignment or removal of roles
It should be possible to assign or remove roles to users in the future.
In other words: Plannable assignment of roles: "An employee starts at a company on 01.01.2025 and should receive several roles on this date."
Plannable withdrawal of roles: "An employee stops working for a company on 31.12.2024 and several roles are to be withdrawn from him on the above date.
The assignment and withdrawal of roles must be logged in an audit-proof manner.
Relevant infos
i.e. Version of other software you're using, specifics of your setup
Screenshots
If applicable, add screenshots to help explain your problem.
Logs
Output of docker-compose logs or kubectl logs respectively
Version and Deployment (please complete the following information):
authentik version: [e.g. 2021.8.5]
Deployment: [e.g. docker-compose, helm]
Additional context
Add any other context about the problem here.
LSchieren
commented
6 months ago
Describe your question/
The following use case:
A new employee starts at a company. As part of the onboarding process, the employee should be assigned to several groups for activities in a subject area in their team so that they can work to their full potential.
Now the idea would be to define a role for the subject area that contains all the necessary groups so that the new employee only has to be assigned this role in order to be able to work directly.
Is this already implemented in Authentik? If not, I would very much like to suggest this.
The necessary steps would be
It must be possible to create a role with the attributes:
Role name
Role description
Role manager
It must be possible to add (AD) groups to these roles.
The user IDs of employees may be assigned roles.
It should be possible to assign or remove roles to users in the future.
In other words: Plannable assignment of roles: "An employee starts at a company on 01.01.2025 and should receive several roles on this date."
Plannable withdrawal of roles: "An employee stops working for a company on 31.12.2024 and several roles are to be withdrawn from him on the above date.
Relevant infos i.e. Version of other software you're using, specifics of your setup
Screenshots If applicable, add screenshots to help explain your problem.
Logs Output of docker-compose logs or kubectl logs respectively
Version and Deployment (please complete the following information):
Additional context Add any other context about the problem here.