User Groups & SCIM

Introduction to User Groups

User groups in Foundation enable role-based access control (RBAC) at scale. Instead of assigning roles to individual users, you can:

  • Create groups that represent teams, departments, or functions

  • Assign roles to groups

  • Add users to groups to grant permissions

This simplifies access management, especially with SCIM integration for automatic provisioning.

What Does It Mean for a User to Be in a User Group?

When a user is in a user group, they:

  1. Inherit all roles assigned to that group

  2. Receive permissions from those roles

  3. Can be managed as part of the group

Example: If the "Data Engineers" group has the "Data Writer" role, all members inherit that role and its permissions.Benefits:

  • Centralized management: update group membership or roles to affect all members

  • Scalability: manage hundreds of users through groups

  • Consistency: ensure team members have the same permissions

  • Auditability: track access by group membership

PreviousManage PoliciesNextCreating User Groups

Last updated