Adding roles
2025-10-01Last updated
Before you can configure your role-based automatic access control policies, you must define your roles.
What you should know
- Only Account administrators can add roles.
- Consider creating roles for each department, group, or job title in your organization. For example, you might create roles for HR, IT, marketing, developer teams, payroll, contractors, and so on.
Procedure
- From the homepage, click .
- Click Add role.
-
In the General section, complete the fields.
- (Optional) In the Notifications section, select the email notifications sent to stakeholders when role membership is changed.
-
In the Advanced settings section, select the workflow and
visibility options for role membership requests:
-
(Optional) In the Expiry enforcement settings set a maximum
duration for role membership.
- Select Enforce a maximum duration for all role requests associated with an identity.
- Enter a maximum duration for membership to the role.
- Click Save.