By default, TechIDManager creates the following groups:
All Techs – Includes all techs added to TechIDManager.
All Domains – Includes all agents added to TechIDManager.
All Rights – Includes all rights initially defined in TechIDManager.
A default triplet ties these three groups together. This means that upon initial setup, every tech added to TechIDManager is granted all rights on all domains.
Types of Rights in TechIDManager:
Domain Rights – Matched by name to Active Directory (AD) groups on a domain.
Local Machine Rights – Matched by name to groups on local machines.
EntraID Rights – Matched by name to rights in EntraID.
If a right name does not exist in a given environment (AD, local machine, or EntraID), it is simply ignored. Note: TechIDManager does not create any AD groups, local machine groups, or EntraID rights.
To view the list of available default rights:
1. Go to “Create a new Right” in the TechIDPortal.
2. Select the type of right (EntraID, Domain, or Local Machine).
3. A list of standard rights will appear at the bottom of the page.
You can also enter custom right names (e.g., AD group names) to allow TechIDManager to manage additional rights.
The following slides explain how custom group configurations work.
If you choose to set up your own groups, you’ll need to either delete or modify the default all/all/all triplet.
We’ll walk through two different group configurations and how they interact when both are in place.
