Citizen Governance
Citizen Governance is based on definition of different types of users and applying corresponding permissions.
User ClassificationFor user classification we use Personas - fictional characters that represents corresponding specific type of user.
- Global Personas -have same permissions across organization, with some additional permissions necessary for development and support.
- Subject Area Personas -have additional access to a subset of data specific to subject area (depends on the organizational structure - Departments, Divisions etc.)
Entra ID Groups
These personas shall be represented by corresponding Entra ID Groups
Permissions for Entra ID Groups
RBAC Permissions should be assigned to each Entra ID group. Below you can see RBAC permissions for default SCF personas/groups. Please note that some permissions on the diagrams below are for illustrative purposes.
Using custom scripts these can be extended to alternative approaches, for example, Group Names can be defined as combination of Department Name and Persona Name.