Assigning All Authenticated Users to a Role

The system assigns roles to users when they authenticate. The following example illustrates a Role policy that creates an Employee role. All authenticated users are assigned to the role of Employee, because it does not include any conditions (see Creating an Employee Role).

Role assignment audit events can be created during authentication to Identity Server. You enabled this on the Logging page in Identity Server configuration by selecting Login Provided or Login Consumed options.