Manage Permissions In Orbit

Assign roles to users

5 min read · Tagged
  • technology
  • security
Anders Ingemann, Operations Manager & Developer
Published March 16, 2021

Multiple ways of assigning roles to users in Orbit

  • Data import from Active Directory or an ERP system
  • ADFS - Active Directory Federation Services
  • Manually by Orbit Online developers
  • Set by customer Admin users directly in Orbit

All of the above-mentioned methods require appropriate verification procedures that are adapted to the circumstances in which they are deployed.

Assign roles by import

Before a data import can assign roles to users, the customer must ensure that the users who can affect a change in the data export end do not have fewer permissions on the data import end. Similarly, the customer must ensure restricted access to any system that may affect what roles an ADFS server instructs Orbit to entrust a given user with.

Manual process

With regards to manually assigning roles, Orbit Online developers never perform any assignments without explicit written instructions to do so by previously agreed upon employees of the customer.

User assign roles to other users

Orbit also provides the ability to enable users to assign privileges to other users through their profile. In these circumstances, Orbit Online makes sure that no combination of the assigned rights allows any user to elevate the permissions to a level beyond the ones currently assigned.

Read more about Orbit Security Mechanisms & Procedures

Data encryption policy

User access to Orbit

Integration of external services

Personnel access to Orbit

Handling Security Exploits & Incidents

Isolation of components

The integrity of the Orbit codebase

Orbit Online A/S
Åbogade 25A
8200 Århus N
+45 7734 4539

CVR: 30 80 09 82