SOAJS gives you the ability to manage tenant users and groups in all environments from the console from under Manage tab Tenant Users UI. SOAJS also gives you the ability to manage the invited users to all sub tenants as well as manage their groups and pin login information if pin login is turned on. Below is a snapshot that shows the UI.
To be able to do this you need to add the iURAC app to any tenant you want to manage its users and groups from SOAJS console.
Here is what you need to do step by step:
Step1:
iURAC product: under manage tag productization make sure you have the iurac product
Step2:
Make sure the right ACL is set for the environment you want to access its users
 |
 |
You need the following APIs:
| Code Block | ||
|---|---|---|
| ||
{ urac: { "3": { access: true, apisPermission: "restricted", get: [{ group: "Administration", apis: { "/admin/all": { access: true } } }, { group: "User administration", apis: { "/admin/users": { access: true } } }, { group: "Group administration", apis: { "/admin/groups": { access: true } } } ], post: [{ group: "User administration", apis: { "/admin/user": { access: true } } }, { group: "Group administration", apis: { "/admin/group": { access: true } } } ], put: [{ group: "User administration", apis: { "/admin/user/status": { access: true }, "/admin/user": { access: true } } }, { group: "Group administration", apis: { "/admin/group": { access: true }, get: "/admin/all" with access: private "/admin/users" with access: private "/admin/groups" with access: private post: "/admin/user" with access: private "/admin/group" with access: private put: "/admin/user/status" with access: private "/admin/user" with access: private "/admin/group" with access: private "/admin/groups/environments": { access: true } } } ], delete: [{ group: "Group administration", apis: { with access: private delete: "/admin/group": { access: true } } }] } } }with access: private |
Step3:
Add the product to the tenant you want to manage its users and create an external key with label IURAC
