Scope of the Manager group
The scope of activities for members of the Manager group is primarily to manage the accounts, profiles, and passwords of their direct subordinates.
These tasks might be unavailable if the person form is customized. For example, the person form might exclude some of the attributes for which the manager has permission to read or write. Managers can manage and delegate activities on their to-do lists. See Table 1.
Default tasks in view Default access control items
- Self-service or Identity Service Center console
- Change your passwords and specify information for your forgotten password questions.
- View your personal profile.
- View, request, and delete your accounts. We cannot change, suspend, or restore our own account.
- View, request, and delete your access. We cannot change, suspend, or restore your access.
- View your activities.
- Manage delegation schedules.
- Administrative console
For supervised users.
- Suspend and restore users.
- Change user passwords and delegate user activities.
- Request, suspend, restore, and delete user accounts.
- Request and delete user access.
- View pending requests or all requests by a user.
- View the activities and manage delegation schedules.
- Self-care or Identity Service Center
- Search and change a password.
- Search, add, and change your account password.
- View basic data about a service, such as service name and description.
- Administrative
For supervised users.
- Run reports for:
- Account Operations
- Account Operations Performed by an Individual
- Accounts/Access Pending Recertification
- Approvals and Rejections
- Individual Access
- Individual Accounts
- Operation
- Pending Approvals
- Recertification Change History
- Recertification Policies
- Rejected
- User
- Delegate activities to users.
Parent topic: Scope of groups