Crowd 2.4 : Managing Users, Groups and Roles

In Crowd, users are referred to as user entity objects or just users.

Groups and roles are known as permission container objects. Groups are particularly important in Crowd, as they are often used to control access to applications. Note also that the crowd-administrators group confers Crowd administration rights to its members.

Notes:

  • As previously announced, roles are now deprecated in Crowd. We have not changed the functionality of roles in Crowd 2.1, but we do recommend that you move away from the use of roles in your Crowd installation so that you will not be adversely affected by the planned redesign of role functionality. Roles are disabled by default when you create a new LDAP directory. We recommend that you leave roles disabled, unless you have existing data that includes roles.

    At present, the implementation of roles in Crowd is identical to the implementation of groups. This design does not provide much useful functionality, so we are planning to redesign the way Crowd supports roles. If you would like to help us to design better role-based access control, please add a comment to the improvement request CWD-931, letting us know how you would like to see it work.

  • This section describes how to add/edit users, groups and roles via the Crowd Administration Console. Note that the ability to do this depends on the permissions of the directory which contains the users, groups and roles.

Managing Users, Groups and Roles

Attachments: