Team Manager to manage user lifecycle (creation, activation, roles and removal)

Zebra equips team managers with the tools needed to manage the lifecycle of users within their designated scope. This functionality is crucial for maintaining up-to-date user access and ensuring that permissions align with current roles and responsibilities. Through Zebra, team managers can create, activate, assign roles, and remove users, facilitating efficient user management tailored to specific team or organisation needs

Functional Capabilities

• User Creation and Removal: Team managers can add new users to their teams, specifying essential information such as usernames, emails, and attributes. Similarly, managers can remove users who no longer require access, ensuring the user base remains current and secure.

• User Activation and Deactivation: Zebra allows for the activation or deactivation of user accounts. Deactivated users cannot access protected resources, a vital feature for temporary suspensions or when users are on leave.

• Role Assignment and Management: Within their scope, team managers can assign roles to users, defining their access levels to various parts of the application or services secured by Zebra. This includes both realm roles and client roles, offering flexibility in access control.

• Scoped Access for Team Managers: Access for team managers is scoped to ensure they can only manage users within their teams or organisations. This scoping can be achieved through Zebra's fine-grained permissions and group or role-based access controls.

Implementation Steps

• Define Groups or Roles for Scoping: Utilise Zebra's groups or roles to create logical separations that represent different teams or organisations. This organisational structure will form the basis for scoping team manager access.

• Assign Team Managers: Assign users to team manager roles, granting them permissions to manage users within their specific groups or roles. This can involve customising the default permissions associated with managerial roles to fit the organisation's needs.

• Configure User Management Permissions: Adjust permissions for team managers to enable them to perform user lifecycle management tasks such as creating, activating/deactivating, and removing users, as well as assigning roles within their scope.

• Educate Team Managers: Provide training for team managers on managing user life cycles within Zebra. This includes navigating the admin console, understanding the implications of their actions, and adhering to organisational policies regarding user access and roles.

Xaana’s Differentiation - Best Practices

• Regular Review of User Access: Xaana recommends team managers to periodically review user access within their scope, ensuring that only appropriate users have access to necessary resources.

• Audit Logs and Reporting: Leverage Zebra's audit logs and reporting features to monitor and record user lifecycle events managed by team managers.