<?xml version="1.0" encoding="UTF-8" ?>
<?xml-stylesheet type="text/xsl" href="https://communities.bentley.com/cfs-file/__key/system/syndication/rss.xsl" media="screen"?><rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/"><channel><title>Dalia Urbonaviciute's Activities</title><link>https://communities.bentley.com/members/e99824fd_2d00_b0ec_2d00_4c04_2d00_a7e5_2d00_9d8d6f2de4f6</link><description>Dalia Urbonaviciute's recent activity</description><dc:language>en-US</dc:language><generator>Telligent Community 12</generator><item><title>Access to Subscription Analytics with a custom Enterprise Role</title><link>https://communities.bentley.com/communities/other_communities/licensing_cloud_and_web_services/w/wiki/56048/access-to-subscription-analytics-with-a-custom-enterprise-role</link><pubDate>Fri, 10 Sep 2021 19:11:30 GMT</pubDate><guid isPermaLink="false">6dad98f5-dbc9-4c4d-a9ba-e9da8dc6aa8e:65e9d9bb-e181-4503-81c9-2f11e8fbb22a</guid><dc:creator>Flavio Normandia</dc:creator><description>&lt;p&gt;All users who are Admins or CoAdmins in Bentley&amp;rsquo;s Identity Management System have access to &amp;nbsp;Subscription Analytics.&amp;nbsp; It is possible to give access to Subscription Analytics to users without giving them these administrator roles.&amp;nbsp; To do this, you need to&lt;/p&gt;
&lt;ol&gt;
&lt;li&gt;Create a new role with the necessary permissions in the Enterprise Role Management system&lt;/li&gt;
&lt;li&gt;Assign that new role to the users who need access.&lt;/li&gt;
&lt;/ol&gt;
&lt;h2&gt;Create a new Enterprise role with Subscription Analytics permissions&lt;/h2&gt;
&lt;p&gt;Navigate to Enterprise Role Management&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;From connect.bentley.com and click on your organization name at the top.&lt;/li&gt;
&lt;li&gt;Scroll down and click on the tile for Roles and Permissions&lt;/li&gt;
&lt;li&gt;For more information, please see &lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/wiki/33589/accessing-enterprise-role-management"&gt;Accessing Enterprise Role Management &lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Create a new role&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Click on Define Roles and then click on New Role&lt;/li&gt;
&lt;li&gt;Give the new role a unique name and hit Save.&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631300797557v1.png" /&gt;&lt;/li&gt;
&lt;li&gt;On the list on the left, under Custom Enterprise Roles, select your new role.&lt;/li&gt;
&lt;li&gt;In the Service Access and Permissions area on the right, scroll down and expand the section called Subscription Services. Check the box for &amp;ldquo;Admin Access to Entitlement Analytics&amp;rdquo; and &amp;ldquo;Admin Access to Subscription Services&amp;rdquo;
&lt;ul&gt;
&lt;li&gt;Note &amp;ldquo;Admin Access to Subscription Services&amp;rdquo; will give the user access to the Subscription Services portal so they can navigate to the Subscription Analytics tile more easily.&amp;nbsp; If you don&amp;rsquo;t want to give users this permission, they can simply navigate directly to the Subscription Analytics URL at &lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/wiki/add/reporting.bentley.com"&gt;reporting.bentley.com&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631300872259v2.png" /&gt;&lt;/li&gt;
&lt;li&gt;Click Save.&lt;/li&gt;
&lt;li&gt;For more information, please see &lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/wiki/33590/how-to-create-a-new-enterprise-role"&gt;How to Create a New Enterprise Role&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;h2&gt;Assign your new Enterprise role to users&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;On the Enterprise Role Management page, use the Search field to find the user that should be assigned the new role.&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631300943779v3.png" /&gt;&lt;/li&gt;
&lt;li&gt;Click on the checkbox next to their name and click on Modify Role(s) at the top of the screen.&lt;/li&gt;
&lt;li&gt;On the Assign to Role form find the role with the Subscription Analytics permissions and click on the checkbox next to it.&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631300964392v4.png" /&gt;&lt;/li&gt;
&lt;li&gt;Click Review&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631300971158v5.png" /&gt;&lt;/li&gt;
&lt;li&gt;On the confirmation screen click on Submit.&lt;/li&gt;
&lt;li&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1631301004363v6.png" /&gt;&lt;/li&gt;
&lt;li&gt;For more information, please see &lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/wiki/33594/modifying-team-member-roles"&gt;Modifying Team Member Roles &lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;/p&gt;
&lt;p&gt;The role is now assigned to the user. It may need a few minutes for the change to take effect, but once that happens, these users will have access to the reports and export functionality in Subscription Analytics.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Note: This permission does not give users access to the Activation Key Mapping page as changes on that page can affect other users&amp;rsquo; entitlements which requires Admin or Co-Admin access.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;/p&gt;
&lt;p&gt;&lt;span style="font-size:150%;"&gt;&lt;strong&gt;Other Language Sources&lt;/strong&gt;&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;&lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/selectserver_and_product_activation_-_wiki_de/58678/zugriff-auf-subscription-analytics-mit-einer-benutzerdefinierten-unternehmensrolle" rel="noopener noreferrer" target="_blank"&gt;Deutsch&lt;/a&gt;.&amp;nbsp;&lt;a href="/products/microstation/w/microstation_-_wiki_jp/59709/page"&gt;Japanese&lt;/a&gt;. &lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/selectserver_and_product_activation_-_wiki_es/62970/acceso-a-los-analiticos-de-suscripcion-con-un-rol-empresarial-personalizado" rel="noopener noreferrer" target="_blank"&gt;Espa&amp;ntilde;ol&lt;/a&gt;&lt;/p&gt;&lt;div style="clear:both;"&gt;&lt;/div&gt;</description></item><item><title>Entitlement Groups - Managing Access</title><link>https://communities.bentley.com/communities/other_communities/licensing_cloud_and_web_services/w/wiki/52809/entitlement-groups---managing-access</link><pubDate>Fri, 08 Jan 2021 13:58:42 GMT</pubDate><guid isPermaLink="false">6dad98f5-dbc9-4c4d-a9ba-e9da8dc6aa8e:4d9ee278-35f5-48ec-b93c-34f3ee524707</guid><dc:creator>N.K</dc:creator><description>&lt;p&gt;Entitlement groups allow easier management of entitlements across a group of users.&amp;nbsp;The entitlements that the group&amp;rsquo;s users are allowed to access are defined by the Allowed Applications list.&amp;nbsp;&lt;/p&gt;
&lt;p&gt;&lt;span style="background-color:#ffffff;"&gt;Users will be denied access to applications outside of that defined list &lt;/span&gt;unless the user is in another group that allows access (see &lt;a href="#user-in-multiple-groups"&gt;What happens if a user is in multiple Entitlement groups?&lt;/a&gt;).&lt;/p&gt;
&lt;p&gt;If the Allowed Applications list is empty, as it will be when first setting up a group, it&amp;rsquo;s assumed that the configuration is still in progress, so the empty list is not applied. This means that &lt;span style="background-color:#ffffff;"&gt;users in the entitlement group will not be blocked from all applications if the list is empty.&amp;nbsp;&lt;/span&gt; It will try to apply previous configured exceptions from the old-style groups, if any exist, or apply the access setting from the country-level.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;a title="How is this different from previous Entitlement group behavior?" href="#difference-from-exception-based-group"&gt;How is this different from previous Entitlement group behavior?&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#previously-configured-groups"&gt;What happens with previously configured Entitlement groups?&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#user-exceptions"&gt;What happens with previously set User level exceptions?&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#checking-group-exceptions"&gt;How to check what exceptions were previously configured in Entitlement groups&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#create-entitlement-group"&gt;How to create a new Entitlement Group&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a title="How to enable Entitlement group changes" href="#enable-allowed-access-list"&gt;How to enable Entitlement group changes&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#add-allowed-applications"&gt;How to add Allowed Applications to restrict users in a group to a strict list of entitlements&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#extend-group-entitlements"&gt;How to extend a user&amp;#39;s entitlements to include the Entitlement country entitlements plus the group&amp;#39;s list Allowed Applications&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#convert-exceptions-to-allowed-list"&gt;How to Convert existing entitlement group exceptions into Allowed Applications&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;&lt;a href="#user-in-multiple-groups"&gt;What happens if a user is in multiple Entitlement groups?&lt;/a&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;h2&gt;&lt;a id="difference-from-exception-based-group"&gt;&lt;/a&gt;How is this different from previous Entitlement group behavior?&lt;/h2&gt;
&lt;p&gt;Previously, entitlement groups used an Exceptions list that could be used to override an application&amp;rsquo;s access setting at the country level. If the group did not have an exception for the application, then the country-level access setting was used.&lt;/p&gt;
&lt;p&gt;&amp;nbsp;Entitlement groups now use an explicit Allowed Applications list that defines which applications entitlement group&amp;rsquo;s users can access.&lt;a id="previously-configured-groups"&gt;&lt;/a&gt;&lt;/p&gt;
&lt;h2&gt;What happens with previously configured Entitlement groups?&lt;/h2&gt;
&lt;p&gt;Previously configured Entitlement groups that have exceptions will continue to operate as before until the Allowed Applications list have been configured.&amp;nbsp; As soon as one application is added to the Allowed Applications list, that list will define the entitlements that the group&amp;rsquo;s users are allowed to use.&lt;/p&gt;
&lt;p&gt;To convert previously configured exceptions into the Allowed Applications list, please see &lt;a href="#convert-exceptions-to-allowed-list"&gt;How to Convert existing entitlement group exceptions into Allowed Applications&lt;/a&gt;&lt;a id="user-exceptions"&gt;&lt;/a&gt;&lt;a href="#_How_to_Convert"&gt;&lt;/a&gt;&lt;/p&gt;
&lt;h2&gt;What happens with previously set User level exceptions?&lt;/h2&gt;
&lt;p&gt;Previously set User level exceptions will not change: they will continue to take the precedence over group-level access settings.&lt;a id="checking-group-exceptions"&gt;&lt;/a&gt;&lt;/p&gt;
&lt;h2&gt;How to check what exceptions were previously configured in Entitlement groups&lt;/h2&gt;
&lt;p&gt;The only way to see allowed and blocked exceptions previously set for a certain entitlement group is through the conversion dialog.&lt;/p&gt;
&lt;p&gt;To access it:&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;1) Login to &lt;a href="https://subscriptionservices.bentley.com/"&gt;https://subscriptionservices.bentley.com/&lt;/a&gt; with a user that has Account Admin or Co-Administrator role&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;2) Navigate to Entitlement/License Management (&lt;a href="https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation"&gt;https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation&lt;/a&gt;) from Enterprise portal Entitlement/License Management tile or left navigation menu&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt="Entitlem3ent Management Tile" src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621607764093v1.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;span&gt; 3) &lt;/span&gt;In left navigation menu under Users and Groups icon select Allowed Access Group &lt;a href="https://connect-entitlementmanagement.bentley.com/entitlement/groups"&gt;https://connect-entitlementmanagement.bentley.com/entitlement/groups&lt;/a&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621608180313v2.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;4) Select The entitlement group (if no groups appear, then they have not been created - Entitlement Groups are created under User Management)&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1641569022017v1.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;5) Click on a convert button&lt;/p&gt;
&lt;p style="padding-left:60px;"&gt;&amp;nbsp;&lt;img alt=" " height="101" src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1610113697614v1.png" width="454" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;6) A dialog opens and shows all group level exceptions that were created for this Entitlement Group.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " border="0" height="238" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1610113736489v2.png" width="781" /&gt;&lt;/p&gt;
&lt;h2&gt;&lt;a id="create-entitlement-group"&gt;&lt;/a&gt;How to create a new Entitlement Group&lt;/h2&gt;
&lt;p&gt;To create a new Entitlement Group please follow the steps described in &lt;a title="How to Create Entitlement Groups" href="/communities/other_communities/licensing_cloud_and_web_services/w/wiki/40274/how-to-create-entitlement-groups" rel="noopener noreferrer" target="_blank"&gt;this article&lt;/a&gt;.&lt;/p&gt;
&lt;h2&gt;&lt;a id="enable-allowed-access-list"&gt;&lt;/a&gt;How to enable Entitlement group changes&lt;/h2&gt;
&lt;p&gt;To enable changes described above, at least one application needs to be added to Allowed Applications list. Otherwise all entitlements available to the account will remain available to the group users.&lt;/p&gt;
&lt;p&gt;You can either add allowed application or convert previously set entitlement group exceptions.&lt;/p&gt;
&lt;p&gt;&amp;nbsp;&lt;/p&gt;
&lt;h2&gt;&lt;a id="add-allowed-applications"&gt;&lt;/a&gt;How to add Allowed Applications to&amp;nbsp;restrict users in a group to a strict list of entitlements&lt;/h2&gt;
&lt;p style="padding-left:30px;"&gt;1) Login to &lt;a href="https://subscriptionservices.bentley.com/"&gt;https://subscriptionservices.bentley.com/&lt;/a&gt; with a user that has Account Admin or Co-Administrator role&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;2) Navigate to Entitlement/License Management (&lt;a href="https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation"&gt;https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation&lt;/a&gt;) from Enterprise portal Entitlement/License Management tile or left navigation menu&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;3) In left navigation menu under Users and Groups icon select Allowed Access Group &lt;a href="https://connect-entitlementmanagement.bentley.com/entitlement/groups"&gt;https://connect-entitlementmanagement.bentley.com/entitlement/groups&lt;/a&gt;&amp;nbsp; &amp;nbsp;&lt;/p&gt;
&lt;p style="padding-left:60px;"&gt;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1622140790490v1.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;4) Click on a previously created Entitlement group name, you will see the following -&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " src="/resized-image/__size/640x480/__key/communityserver-wikis-components-files/00-00-00-02-64/EntGroup1.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;5) Start typing in the application search and a dropdown will appear&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621609171844v4.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;6) Select Allowed Applications tab&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621610161713v6.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;7) In the Search field search for an application that you want this group to HAVE access to. Select the application and click on a blue plus sign&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&amp;nbsp;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621610264703v7.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;8) Selected application appears on the list. You can repeat this to add many applications in one go.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&amp;nbsp;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1621610400194v8.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&amp;nbsp;9) Leave the option to Include Allowed Applications from the entitlement country turned off.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1622829539781v2.png" /&gt;&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;span style="background-color:#ffffff;"&gt;10) Once the group has at least one application in Allowed Applications list, all other applications are blocked for Activation Keys and Group Users associated with this group.&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;&amp;nbsp;&lt;/p&gt;
&lt;h2&gt;&lt;a id="extend-group-entitlements"&gt;&lt;/a&gt;How to extend a user&amp;#39;s entitlements to include the Entitlement country entitlements plus the group&amp;#39;s list Allowed Applications&amp;nbsp;&lt;/h2&gt;
&lt;p&gt;Follow the same steps to&amp;nbsp;&lt;a href="#add-allowed-applications"&gt;How to add Allowed Applications to restrict users in a group to a strict list of entitlements&lt;/a&gt;, but enable the option to Include Allowed Applications from the Entitlement country.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1622829985512v3.png" /&gt;&lt;/p&gt;
&lt;p&gt;Turning on this option will provide the users in the group all of the entitlements from their Entitlements country plus any of the Allowed Applications added to the group.&amp;nbsp; This will override any Denied access settings for the products that might have been set at the Default or Product level.&amp;nbsp;&lt;/p&gt;
&lt;p&gt;This is a good way to limit who can access certain products as they can be Denied for everyone else in the organization by using the Product-level or Default-level access controls and Allowed only for the users in a particular Entitlement group.&lt;/p&gt;
&lt;p&gt;Include Allowed Applications from the Entitlement country&lt;span&gt;&amp;nbsp;&lt;/span&gt;option is also shown in Entitlement Groups list,&lt;span&gt;&amp;nbsp;&lt;/span&gt;Allowed Applications Included&lt;span&gt;&amp;nbsp;&lt;/span&gt;column.&amp;nbsp;Applications&lt;span&gt;&amp;nbsp;&lt;/span&gt;column in the same page shows number of applications enabled for the Entitlement group. It does not add applications from Entitlement Country when such are enabled.&lt;/p&gt;
&lt;p&gt;Note: it&amp;#39;s important to keep in mind that all Allowed entitlements are additive across all of a user&amp;#39;s Entitlement groups.&amp;nbsp; &amp;nbsp;If a user is in multiple Entitlement groups, that user will have access to all of the Allowed entitlements&amp;nbsp;defined by&amp;nbsp;all of their groups together.&amp;nbsp;&amp;nbsp;If&amp;nbsp;the option for Include Allowed Application from the Entitlement country is turned on for one of the user&amp;#39;s groups, even if it&amp;#39;s off for the other groups, the user will have access to all the Allowed applications for their Entitlement country as well as all of the products in the Allowed Applications list for all of their groups.&lt;/p&gt;
&lt;h2&gt;&lt;a id="convert-exceptions-to-allowed-list"&gt;&lt;/a&gt;How to Convert existing entitlement group exceptions into Allowed Applications&lt;/h2&gt;
&lt;p&gt;Administrators can convert previously configured exceptions into the Allowed Applications list using the steps below.&amp;nbsp; This conversion will take the exceptions configured for Allowed and add them to the Allowed Applications list.&amp;nbsp; Any exceptions that were configured for Denied will not be converted as leaving them out of the Allowed Applications list will have the same effect.&amp;nbsp; At the end of the conversion, all previously configured exceptions will be removed.&lt;/p&gt;
&lt;p&gt;Note: This convert functionality only allows administrators to take the exceptions list from an Entitlement group that was&amp;nbsp; previously configured in Entitlement Management and move that list into the Allowed Applications list.&amp;nbsp; &lt;strong&gt;The Convert functionality does not support conversion of a Restricted Applications list from SELECTserver into this list in the Subscription Entitlement Service.&amp;nbsp; That must be done manually.&lt;/strong&gt;&lt;/p&gt;
&lt;p&gt;&amp;nbsp;To convert &lt;em&gt;allowed&lt;/em&gt; group level Exceptions to &lt;em&gt;Allowed Applications&lt;/em&gt; in a certain Entitlement group:&lt;/p&gt;
&lt;ol&gt;
&lt;li&gt;Login to &lt;a href="https://subscriptionservices.bentley.com/"&gt;https://subscriptionservices.bentley.com/&lt;/a&gt; with a user that has Account Admin or Co-Administrator role&lt;/li&gt;
&lt;li&gt;Navigate to Entitlement/License Management (&lt;a href="https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation"&gt;https://connect-entitlementmanagement.bentley.com/#!/Account/SubscriptionInformation&lt;/a&gt;) from Enterprise portal Entitlement/License Management tile or left navigation menu&lt;/li&gt;
&lt;li&gt;&lt;span&gt; &lt;/span&gt;In left navigation menu under Users and Groups icon select Allowed Access Group &lt;a href="https://connect-entitlementmanagement.bentley.com/entitlement/groups"&gt;https://connect-entitlementmanagement.bentley.com/entitlement/groups&lt;/a&gt;&lt;/li&gt;
&lt;li&gt;Select the group that you want to convert&lt;/li&gt;
&lt;li&gt;Click on a convert button&lt;/li&gt;
&lt;/ol&gt;
&lt;p style="padding-left:30px;"&gt;&amp;nbsp;&lt;img alt=" " src="/resized-image/__size/320x240/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1610113966256v5.png" /&gt;&lt;/p&gt;
&lt;ol start="6"&gt;
&lt;li&gt;A dialog opens and shows all group level exceptions that were created for this Entitlement Group. You can select to Convert &lt;strong&gt;Allowed&lt;/strong&gt; This converts the group to Allowed Access group. All access blocking exceptions are deleted.&lt;/li&gt;
&lt;/ol&gt;
&lt;p style="padding-left:30px;"&gt;&lt;img alt=" " border="0" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-02-64/pastedimage1610114084040v7.png" /&gt;&lt;/p&gt;
&lt;p&gt;You can delete all previously set exceptions. This will enable entitlement group&amp;rsquo;s users access to ALL applications until an application is added to Allowed Applications list.&lt;a id="user-in-multiple-groups"&gt;&lt;/a&gt;&lt;/p&gt;
&lt;h2&gt;&lt;a id="user-in-multiple-groups"&gt;&lt;/a&gt;What happens if a user is in multiple Entitlement groups?&lt;/h2&gt;
&lt;p&gt;The same user can belong to several entitlement groups (all belonging to the same Entitlement Country). In such cases, the list of entitlements that the user is allowed to access is defined by all the groups together. In other words, applications that are available to at least one group will be available to the user.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;Example: a user belongs to two groups A and B. MicroStation is in the Allowed Applications list in group A but not in group B. The user can use MicroStation.&lt;/p&gt;
&lt;p style="padding-left:30px;"&gt;&lt;/p&gt;
&lt;p&gt;&lt;span style="font-size:150%;"&gt;&lt;strong&gt;Other Language Sources&lt;/strong&gt;&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;&lt;a href="/communities/other_communities/licensing_cloud_and_web_services/w/selectserver_and_product_activation_-_wiki_de/60604/berechtigungsgruppen---verwaltung-des-zugriffs" rel="noopener noreferrer" target="_blank"&gt;Deutsch&lt;/a&gt;&lt;/p&gt;&lt;div style="clear:both;"&gt;&lt;/div&gt;</description></item></channel></rss>