Browse security identities
Browse security identities
The Browse Security Identities subpage lets you review the security identities managed by a security identity provider. For details on how Coveo leverages the security data in sources that index the repository access permissions, see Coveo management of security identities and item permissions.
After you delete users or groups from a security provider, these identities still appear on the Browse Security Identities subpage. Their displayed state is then Disabled (see Identity State).
Access the "Browse Security Identities" subpage
Browse the relationships of an identity
Security identity relationships are crucial when evaluating effective permissions, as they allow the index to resolve granted identities, groups, virtual groups, and individual user entities. When troubleshooting permission issues with an identity, it may be useful to review its parent and child relationships.
To browse the relationships of an identity, on the Browse Security Identities subpage, select the desired identity, and then, in the Action bar, click Browse relationships. On the identity’s subpage, the Direct parents, All parents, Direct children, and All children tabs display its relationships. The "Direct" tabs show the immediate parents and children of the selected identity, while the "All" tabs show all parents and children of the selected identity, direct and indirect.
See Child/Parent relationship for details on child/parent relationships between identities.
You can impersonate an identity and open the Content Browser (platform-ca | platform-eu | platform-au) to view the content this identity is allowed to see. See Inspect items with the Content Browser for details. This is especially useful when troubleshooting permission issues.
To search as an identity, on the Browse Security Identities subpage, select the desired identity, and then, in the Action bar, click Search as.
You’re then redirected to the Content Browser. At the top of the page, a ribbon reads: Searching as [Identity Type] [Identity Name]. On the right side, click X to stop searching as the selected identity and display the entire organization content.
Refresh an identity
Ensure however that the desired security identity is also automatically updated following a scheduled update. See Configure security identity refresh schedules for more information.
A manual refresh of a specific security identity is useful for when you encounter issues with a specific identity. See Security identity state reference for details. You can also perform a manual refresh to ensure that important security identity changes made in a system are taken into account in your searchable content.
This is useful when you know important security identity changes were made in several systems and want to ensure that they’re now taken into account in your searchable content.
You can configure refresh schedules for a security identity provider on the Security Identities (platform-ca | platform-eu | platform-au) page. The security identities in this provider are then updated automatically on a regular basis, and may only require a manually triggered refresh when in error.
In the Edit Provider Schedules panel, select the appropriate recurrence and time of day you want each identity to be refreshed.
Click Save. Changes are effective immediately.