- 21 Jun 2024
- 3 Minutes to read
- Print
- DarkLight
- PDF
Granting Access to Clarity
- Updated on 21 Jun 2024
- 3 Minutes to read
- Print
- DarkLight
- PDF
This quick guide will help you learn how to grant Clarity access to a new user. We will also explain how use of SSO impacts user access to Clarity.
Granting Access Manually
If this is the first time you are granting access to a user, please follow the quick steps outlined below.
New Identity
If you are creating a new Identity from scratch, then the first step is to head to the Identities page and hit the Add New Identity button. You will need to populate this form with the required fields (First Name, Last Name, Email, and Organizational Units). Then, you can just follow the instructions below to grant access to this new Identity.
How to Grant Access to an Identity
Locate the Identity (or create one, see above) in the Identity Explorer.
Click the Grant Clarity Login button (see below for details on what this button does)
Now this Identity has the ability login to the platform
Provide them the instructions to reset their password
Grant Clarity Login
Clicking this button on an Identity page performs several actions:
Add Additional Clarity Entitlements
If you want to add additional access for this User, check out the Clarity Entitlements available. Then follow the steps below to add them. You may want to make this user a Manager, Admin, Access Certification Admin, etc. This will allow the user to perform additional actions in Clarity.
On the same page where you found the Grant Clarity Login button, click the Manage Access button.
Narrow the scope to Clarity by typing “Clarity” in the Application column.
Click SELECT next to the Entitlements you wish to grant.
They should changed to SELECTED
Once you have selected all the Entitlements you wish to grant, then click either Grant Permanent Access or Grant Temporary Access.
For Temporary Access use the date selector (on the left) to choose an expiration date (default is 3 months from today).
Automatic Access (SSO)
When a user successfully logs into Clarity for the first time using your configured SSO they will be automatically granted at least the Base User and End User entitlements. This automatic access process is explained in more detail below.
First time logging in with SSO
If you have SSO correctly configured for Clarity and login for the first time:
User attempts to log in to Clarity, which redirects to the SSO provider of your choice. The user enters their credentials into this 3rd party login page.
SSO Provider either approves or denies the login attempt (based on group membership), and tells Clarity whether the login was successful.
Clarity will add the Base User and End User entitlements, and add the user to the list of accounts with the ability to log in.
Clarity will also grant Manager entitlement if the user is currently assigned as a Reviewer on any Access Reviews (at the time of first login only).
The user is redirected back to Clarity logged in, with their new access.
Check out Clarity Entitlements to learn more about the Entitlement mentioned above.
Need help?
If you have any problems, contact your customer success team. You can also get in touch with our general support via email, open a support ticket. Our general support team is available Monday - Friday from 8:00 AM - 6:30 PM CST.