Resource set conditions

Early Access release. See Enable self-service features.

To better meet your org's security needs, you can exclude a resource from a resource set by adding conditions. When a resource has conditions, admins who are assigned the resource set have access to all resources except those with conditions.

There are several important things to note when using resource set conditions:

  • If you disable the functionality, your configured resource set conditions become read-only. Admins who are assigned the role lose access to all of your org's apps.
  • If an app is conditioned out of a role, admins with that role can't create new instances of the app.
  • The Admin role assignments report provides an overview of your resource set conditions and assignments.

Condition a resource

  1. In the Admin Console, go to SecurityAdministrators.
  2. Go to the Resources tab.
  3. Select EditEdit resource set for a resource set with apps, or Create a resource set.
  4. Click the pencil icon next to the resource. The Edit apps and instances dialog opens.
  5. Type the name of the apps that you want to exclude in the Select applications field.
  6. Click Apply.
  7. Click Save.

Related topics

Work with the resource set component

Create a resource set