Skip to main content

Add User Groups to Roles

Sam
  • Updated

Overview

User Groups can be linked directly to Roles, streamlining access management by automatically syncing Group membership with Role membership.

In Risk Cloud: 

  • Roles grant platform access so that users can perform work. Roles can also be managed through your IdP with our SCIM integration.

  • User Groups control Record access on a Record-by-Record basis. Historically, user membership has required manual management.

By linking these two objects, Risk Cloud offers a simplified approach to managing user permissions.

Adding a User Group to a Role

You can now add a User Group directly to a Role, creating a one-way, 1:1 sync where the User Group's membership is automatically driven by the Role.

 

This is managed in the Roles modal, where you’ll now find a tab labeled Connected Group that includes a dropdown list of available User Groups eligible for mapping.

Screenshot 2025-04-29 at 10.06.06 AM.png

 

Screenshot 2025-04-29 at 10.09.31 AM.png

 

Once a User Group is assigned to a Role, all users in that Role will be added to the User Group and kept in sync as Role membership changes over time. It's important to note, this is a one-directional relationship—users in the User Group will not be added to the Role—and once mapped, the User Group's membership can no longer be modified manually. The only attribute of a Connected User Group that can be edited is its name.

 

During the mapping process, you will see a warning that compares the number of users in the selected Role to those currently in the User Group, helping to identify any discrepancies before finalizing the sync.

 

Screenshot 2025-04-30 at 5.28.09 PM.png

Frequently Asked Questions

Q: Can I still add users manually to a User Group that’s connected to a Role?
A: No. Once a User Group is linked to a Role, its membership is entirely controlled by that Role and cannot be edited manually.

Q: Can one Role be linked to multiple User Groups?
A: No. Each Role can only be connected to one User Group, and each User Group can only be connected to one Role.

Q: Can I link an existing User Group to a Role?
A: Yes, provided that it is not already linked to another Role. The 1:1 relationship requirement must still be maintained.

 

Additional Resources

Related articles

Comments

0 comments

Please sign in to leave a comment.