Close popover

Table of Contents

Creating an access group


An access group is a group of application permissions that are used by an operator, external system, or background process. Create an access group to define the actions that are allowed when such an entity uses an application.

To create an access group, you must have the pzCanAlterRoles privilege, which is included in the PegaRULES:SecurityAdministrator role.
  1. In the Dev Studio header, click Create Security Access Group .

  2. Enter a short description for this access group data instance.

  3. In the Access Group Name field, enter a name. As a best practice, use the format of an application name followed by a single colon and a description of the job or user function of the users or other requestors who belong to this access group.

    Do not use an asterisk character(*), parentheses (), or spaces in an access group name. Begin the name with a letter and use only letters, digits, dash, ampersand, period, and colon characters.

  4. Click Create and open.

    The access group is created in a ruleset for the application that you are currently logged in to. You can change the ruleset by clicking Edit next to the ruleset name.
  5. In the Application section, in the Name field, press the Down Arrow key and select the name of the application that this access group can access.

  6. In the Application section, in the Version field, press the Down Arrow key and select the version of the application that this access group can access.

    When a user logs in, the ruleset names and ruleset versions identified in the application rule are added to the user's ruleset list.

  7. Granting portal access to an access group.

  8. Adding a role to an access group.

  • Learning about access groups

    An access group is a group of permissions within an application. Pega Platform uses these permissions for operators, external system access, and background processes. You define an access group for operators who have similar responsibilities. For example, most applications allow case managers to do actions that are different from the actions of regular operators, so case managers and regular operators belong to different access groups.

Suggest Edit

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.