Identify unused roles and permissions

Feature coming soon

 

Prerequisites
  • Authorization > Role > Edit permission to remove a permission from a role
  • Authorization > Role > View permission to view the permissions on a role
  • Authorization > Grant > Delete permission to remove a permission from a user

Administrators can identify unused roles that are assigned to a user and unused permissions on a role. This feature identifies unused roles and permissions based on the usage patterns of users in the last 30 days. After identifying unused roles and permissions, administrators can remove them to reduce security risks.

Identify unused permissions for a role

  1. Click Admin.
  2. Under People & Permissions, click Roles/Permissions.
  3. Find the role you want to view.
  4. Click Moreand from the menu that appears, click Edit Role.
  5. Click the Permissions tab.
  6. Optional: Click Assigned Permissions to display only the permissions assigned for the role.
  7. A check mark in the Unused column indicates that none of the users with the role assigned have required this permission to access features in Genesys Cloud.
  8. To remove the unused permission from the role, disable the check box next to the permission.

Identify unused roles for a user

  1. Click Admin.
  2. Under People & Permissions, click People.
  3. Find the user you want to view.
  4. Click Moreand from the menu that appears, click Edit Person.
  5. A check mark in the Unused column indicates that the user has not required this role to access features in Genesys Cloud.
  6. To remove the unused role from the user, turn off the toggle in the Assigned column.
Note: Genesys Cloud does not identify unused roles and permissions in real time. Typically, the Unused columns updates every 48 hours.