Skip to main content

Manage user groups

User groups provide a convenient method of assigning the same role to multiple users, and for creating sets of users for alert and incident assignment purposes.

You can manage groups manually, or enable SSO for APEX AIOps Incident Management and use a claim key to map SSO group membership to Incident Management groups. For more information, see Configure SSO for OpenID Connect (OIDC).

Add a new group

To create a new custom group:

  1. Navigate to Settings > User Groups and then click Add User Group.

  2. Complete the following information:

    1. Name: Enter a descriptive name for the group.

    2. Description: Enter an optional description of the group.

  3. Define the group members:

    1. Under Group Members, click Select group members to open a list of users.

      A list of users defined in your organization's Incident Management instance displays.

    2. Select the group members from the list by checking the boxes next to the users' names.

    NOTE: You can skip this step and include no members in the group if you are preparing groups for use with SSO. See Add groups to use with SSO for more information.

  4. Under Group Role, click Select role to open the list, and then select a role to apply to the group.

    A preview of the role permissions displays under your selection.

    Permissions conferred by the group role are added to the permissions the members already have. A group role can only add to user permissions. Group membership does not remove or decrease permissions.

    For example, if a user with View permission to the Alerts feature is added to a group with Edit permission to Alerts, that user now has Edit permission to Alerts. However, if a user with View permission to Alerts is added to a group with No Access to Alerts, the user retains the original View permission.

    NOTES
    • By default, four options display for group role: owner, administrator, operator, none. You can add a custom role to create additional roles.

    • To create a logical group of members (as for incident and alert assignments), select None to apply no role to the group. When a group has no role, then group member permissions are unchanged by membership.

  5. Click Save.

Add groups to use with SSO

Before you can map your SSO groups to your Incident Management groups, you must first create the groups in Incident Management.

Add groups as shown in Add a new group, but do not select any group members. By creating an empty group, you allow the SSO group mapping to populate the group with SSO members. The same members will appear in the Incident Management group as in the SSO group, as long as those members are available as Incident Management users.

For more information on configuring SSO, see Configure SSO for OpenID Connect (OIDC).

Remove a group

To delete a custom group:

  1. Navigate to Settings > User Groups.

  2. Locate the group in the list, and then click Delete (the trashcan icon).

    NOTE: You can delete a user group even if there are members in it.

  3. Confirm the deletion, and the group is removed.