Guide for Setting up Groups and Roles
Understanding Groups and Roles:
Groups: Groups are imported from Okta into our system. They are supposed to represent different categories or teams within your organization.
Roles: Roles in our system define permissions and access levels that users can have based on their group memberships.
Mapping Groups to Roles:
Determine which roles in our system correspond to each group imported from Okta. For example, Group A from Okta might map to Role X in our system.
Users who belong to a specific group in Okta will automatically be assigned the corresponding role in our system during the synchronization process.
Please note that there are four Roles in TimeClock 365: Administrator, Group Manager, Employee, Employee Editor. You can refer to this guide to learn more about them.
Adjusting Order for Rule Priority:
- Log in to our system.
- Navigate to the sidebar -> Settings -> Company profile -> SAML section.
- Click “Add item”.
- Select Group in the left column and Role in the right columns.
Manage order
If a user meets the criteria for multiple rules (e.g., belongs to multiple groups that are defined by different rules), the system applies the role assignment specified by the rule that appears higher in the list.
Let’s say John Smith assigned to the Managers and Employees groups in Okta.
If user are not assigned to the group, you can set up the default Role.
Navigate to the sidebar -> Settings -> Company profile -> Genaral section
Find the Azure user synchronization section and select the Role in the dropdown: