Organizational Security in OIM
1. Introduction :
Information Systems department (IT arm of General Financial) have a bunch of vendors supplying necesary IT infracstructure , like desktops by Dell , Servers by Oracle and Mobile devices by Apple . Colin Adams ( CADAMS) is the adminstrator for the Information System Vendors organization which is the central group managing all the vendors . In this capacity , he administaers the users , roles , entitlements and application instances for all vendors in the organization which are required when thos users access the Information Systems IT portal for managing/tracking orders for infrastructural components and any issues raised with thier functioning .Colin logs into Self Service and he can see users , roles and organizations across the Information Systems Vendors organizations.Colin is not able to scale since his organization is rapidly on-boarding more staff in vendor organizations . To perform his duties . he decides to let each vendor manage tehr own users , roles etc.
To do this , he would identify specific vendor organization and out of their members , select particular users and grants them the administrative access on the respective vendor organization .Thereafter , that administrator would log in to Self Service and would only see users who belong to Dell . Also , if he searches Roles & Organizations and see that he can only see and manage roles published to Dell .In this way , Colin can delegate the administration of other vendor organizations to users in those organizations .
2. Delegation
Let us assign all Admin privileges to Colin Adams for Information System Vendor Org .
1. Login to Self Service console as ADMIN
2. Navigate to Administration ->Organizations .
3. Search for the Organization Information System Vendors .
4. Navigate to Admin Roles tab .
5. Key in *Administrator* in the Query By Example text box above the Admin Role Name column 
6. Select all filtered admin roles and click Assign.
7. Search for the user CADAMS.
8. Click Add.
9. Check the include sub-orgs checkbox. This makes this user the admin for Information Systems Vendor organization and all sub organizations.