Difference between revisions of "Federated vs Local Roles"
(→Script) |
(→Script) |
||
| Line 14: | Line 14: | ||
:Nevertheless, throughout all services of [[CNM Cyber]], only [[CNM Cabin]] can identify you as you. No other service or system can do that; they rely on [[CNM Cabin]]'s determination. | :Nevertheless, throughout all services of [[CNM Cyber]], only [[CNM Cabin]] can identify you as you. No other service or system can do that; they rely on [[CNM Cabin]]'s determination. | ||
| − | '''[[ | + | '''[[CNM Cloud Online]]''' is the successor [[lectio]]. |
==Questions== | ==Questions== | ||
Revision as of 15:22, 13 September 2020
Federated vs System Roles (hereinafter, the Lectio) is the lesson part of the CNM Cabin Essentials lesson that introduces its participants to CNM Cabin. This lesson belongs to the CNM Cyber for Experience session of the CNM Cyber Orientation.
Content
The predecessor lectio is System-User Roles.
Key terms
- Identity and access management (IAM). Practice and a set of concepts based on that practice of granting each user of some system a right system-user role.
- Federated role. The system-user role that is assigned to a user in several related, yet independent, software systems by default. A particular system may or may not override the federated role within that system and re-assign its local system-user role to that particular user. That re-assignment can happen only within one system and cannot affect any other system unless the federal role has been changed.
Script
- It is worth mentioning that CNM Cabin manages its own system-user roles and every other service of CNM Cyber uses that role to allow that user to access its resources. CNM Cabin's system-user roles are called federated. Going further, every service is supported by their own systems and those systems can manage their own system-user roles. For instance, if CNM Cabin identifies you and informs CNM Social that your federated role is CertUser, CNM Social checks its own database and clarify that you joined some communities and, possibly, manage another. If no internal permissions are assigned, then the particular service takes your federated role by default.
- Nevertheless, throughout all services of CNM Cyber, only CNM Cabin can identify you as you. No other service or system can do that; they rely on CNM Cabin's determination.
CNM Cloud Online is the successor lectio.
Questions
Lectio quiz
- The answer is recorded for the lectio completion purpose:
- Which statement below is correct:
- CNM apps use the internal system roles when these roles contradict the federated roles assigned by CNM Cabin.
- CNM apps use the federated roles assigned by CNM Cabin when these roles contradict the internal system roles.
- When the internal system roles and federated roles assigned by CNM Cabin contradict each other, a CNM app uses the one that is assigned earlier.
- All of the other substantive answers are correct.
- None of the other answers is correct.
- Which statement below is correct:
