Global admins to create new participant services (org units) and user groups (e.g. Fraud Analyst)

Zebra is designed with flexible user and group management capabilities that allow for the creation and administration of participant services and user groups. This functionality is essential for organisations like Enterprise that need to manage access and permissions across various organisations, teams, or services efficiently.

Zebra provides a role-based access control (RBAC) system that allows global admins to manage participant services (Org Units) and user groups effectively.

Creating Participant Services (Org Units):

• Global admins within Zebra can create new Org Units through the Zebra Administration Console.

• These Org Units represent different organisations, teams, or participant services within Enterprise.

• Org Units can be arranged hierarchically to reflect the organisational structure.

Creating User Groups:

• Global admins can create user groups within Zebra. These groups can be associated with specific participant services (Org Units) or remain independent.

• User groups categorise users who share similar characteristics or access requirements.

• Examples include "Fraud Analyst," "Content Editor," or "Help Desk Staff."

Managing Existing User Groups:

Global admins have full control over existing user groups. They can:

• Edit group names and descriptions.

• Add or remove users from groups.

• Assign specific roles to user groups. These roles determine the permissions users within the group have within applications protected by Zebra.

Functional Capabilities

• Realms for Participant Services: In Zebra, realms are used to isolate and manage sets of users, roles, and groups. Each realm can represent a participant service or organisational unit, providing a way to segment users and their access rights according to the structure of the organisation.

• User Groups: Zebra allows global administrators to create and manage user groups within realms. These groups can be used to organise users in ways that reflect their roles, functions, or enterprise within the organisation, such as a "Fraud Analyst" group.

• Role Assignments: Within realms and groups, Zebra supports fine-grained role management, enabling global admins to assign specific roles to groups or individual users. This ensures that users have the correct permissions and access rights based on their group membership or individual assignments.

Implementation Steps for Organisation

• Defining Realms for Participant Services: As a global admin, start by creating new realms in Zebra to represent different participant services or organisational units within Enterprise. Each realm acts as a separate entity with its configuration, users, and groups.

• Creating and Managing User Groups: Within each realm, create user groups that represent different roles or organisations, such as "Fraud Analyst." Use the Zebra admin console to manage these groups, adding or removing users as needed.

• Assigning Roles to Groups or Users: Define roles that correspond to the access rights and permissions required by different groups or users. Assign these roles to the appropriate groups or directly to users, ensuring that they have access to the necessary resources and functionalities.

• Utilising Group Hierarchies: Zebra allows for the creation of group hierarchies, enabling more complex organisational structures to be represented. Organise user groups into hierarchies that reflect the structure of Organisation, facilitating easier management of inherited roles and permissions.

• Regularly Review and Update Configurations: Periodically review the setup of realms, user groups, and role assignments to ensure they continue to meet the needs of Organisation. Adjust configurations as the organisation evolves or as new participant services are added.

Xaana’s Differentiation - Best Practices

• Consistent Naming Conventions: Xaana recommends to use clear and consistent naming conventions for realms, groups, and roles to avoid confusion and ensure easy navigation within the Zebra admin console.

• Leverage Group Hierarchies: Xaana recommends to effectively use group hierarchies to minimise the complexity of role assignments and to ensure that permissions are appropriately inherited within organisational structures.

• Audit and Log Activities: Take advantage of Zebra's auditing and logging features to track changes in group memberships and role assignments, enhancing security and accountability.

• Train Administrators: Xaana will train on Zebra's functionalities related to managing participant services, user groups, and roles. This includes understanding how to create, modify, and delete entities within Zebra.