Search…
Permission

Permissions

You can delegate access to different levels of functionality of RealmJoin Portal to different users based in AzureAD group- or role membership.
To delegate/limit which runbooks can be used by different operators, please see Runbook Permissions - which is not covered here.
There are different levels/roles that can be granted on this page:

Admin Permissions

This will grant full administrative and configuration control over RealmJoin Portal. This includes:

Auditor Permissions

This will grant read-only access to all areas of RealmJoin Portal.
This permissions does not include
  • Starting Runbooks
  • Subscribing to apps/packages
  • Modifying group memberships / assignments
  • Access to Settings

Runbook Runner Permissions

This will grant:
This permissions does not include
  • Subscribing to apps/packages
  • Modifying group memberships / assignments
  • Access to Settings
This is the recommended permission to use for User/Device Supporter Roles.

Permission Defaults

Normal users will by default only have access to the About Me page to support self-service scenarios.
On initial onboarding, The AzureAD role "Global Admins" is also a RealmJoin Admin, so that initial configuration is possible.
Last modified 6mo ago
Copy link
Edit on GitHub
On this page
Permissions
Admin Permissions
Auditor Permissions
Runbook Runner Permissions
Permission Defaults