Prerequisites

See Property Level Access Control (PLAC) in Medallia Digital and Mapping Experience Cloud roles to Digital properties for details about integration prerequisites.

Property Level Access Control (PLAC) in Medallia Digital

Medallia Digital requirements
  • All digital properties (for both v1 and v2) must be hosted on the same Digital account, and this Digital account must be connected to an Experience Cloud instance via SSO setup.
    Note: An Experience Cloud instance can only be connected via SSO to one Digital account at a time.

Org hierarchy requirements

  • Unit type (unittype) unit groups (UGs) must be set up in the org hierarchy within Experience Cloud.

  • Digital (unittype_digital) unit groups (UGs) must be set up as child unit groups of the parent UGs.

  • All Digital property units must roll up to the rolling up to the Digital (unittype_digital) UGs.

Note:

  • For v2 properties, this is set up during Digital provisioning as part of the BPP deployment and unit creation processes.

  • For v1 properties, this must be configured manually for each mapping between a Digital property and a Experience Cloud unit. Contact your Digital expert to raise a support ticket for the manual configuration.

User access requirements

  • All digital administrative Experience Cloud roles must have access to Unit Type (unittype) UGs. Set this up on the Permissions by Segments screen.

  • All digital administrative users must have been set up in Experience Cloud to have data access permissions assigned to the following:

    • Users must have access to the Unit Type = Digital Unit Group

      Permissions by Segment screen.

    • Users may have access to Digital property units through All Individual units.

    • Users may have access to restricted sets of Digital properties through custom unit groups. The selected unit groups must have the Digital property units rolling up to them.

    • Users may also have access to survey data segmentation (E-fields/K-fields) as this does not impact Digital data access. This does mean additional data access layering (e.g., the Development Cycle field) can be included in conjunction with  the org hierarchy permissions.

Warning:

PLAC respects the data access assigned to a particular user (default permission context for the primary role) and is not affected by role level segments (See "Role management" in the Experience Cloud documentation for details).

All the steps in this topic are absolutely necessary prior to switching on PLAC. Failure to do so can result in users not being able to access Digital via Medallia Admin Suite.

Mapping Experience Cloud roles to Digital properties

Note: This is not available in earlier versions of Digital.

  • Digital v2 integration must be set up.

  • Experience Cloud roles must be synced with Digital properties in NGR.