Difference between revisions of "Common: LDAP Settings"

Revision as of 08:03, 23 December 2020

Default Team - A new user's default Team.

The team assignment can be changed in the platform after the user logs in.

The user can change it in their Personal Settings. An admin can do so in the Users page.

Default Access Profile - A new user's default Access Profile.

The user's access profile is fully determined by the configuration.

LDAP Attribute for Access Profile - The name of the LDAP attribute that designates the user's access profile.

The attribute must contain an access profile's record ID.

To get a record ID:

a. Go to > Access Management > Access Profiles

b. Modify the view to display Record IDs, and copy the ones you need.

Default Application - The initial Application the user sees when they log in.

That setting can be changed in the platform after the user logs in.

The user can change it in their Personal Settings. An admin can do so in the Users page.

To grant access to additional applications:

a. When the user logs in, a User record is created for them in the platform.

b. You can then use the Application Access page to specify the applications the user can access.

LDAP Attribute for Application - The name of the LDAP attribute that designates the user's application.

The attribute must contain the application's record ID.

To get a record ID:

a. Go to > Access Management > Application Access

b. Modify the view to display Record IDs, and copy the ones you need.

Default Role - The new user's Role in the application.

That setting can be changed in the platform after the user logs in.

The user can change it in their Personal Settings. An admin can do so in the Users page.

LDAP Attribute for Role - The name of the LDAP attribute that designates the user's role in the application.

The attribute must contain the role's record ID.

To get a record ID:

a. Open the application, if it is not already running.

b. Go to > Customization > Application Roles

c. Modify the view to display Record IDs, and copy the ones you need.

_

@@ Line 1: / Line 1: @@
-:* '''Attribute for First Name -''' The name of the SAML attribute that designates the user's first name.
-:* '''Attribute for Last Name -''' The name of the SAML attribute that designates the user's last name.
-:* '''Attribute for Email -''' The name of the SAML attribute that designates the user's email address.
 ::<hr width="500">
@@ Line 13: / Line 10: @@
 ::: ''The user's access profile is fully determined by the configuration.''
-:* '''Attribute for Access Profile -''' The name of the SAML attribute that designates the user's access profile.
+:* '''LDAP Attribute for Access Profile -''' The name of the LDAP attribute that designates the user's access profile.
 ::: The attribute must contain an access profile's ''record ID''.
 ::: To get a record ID:
@@ Line 27: / Line 24: @@
 ::::b. You can then use the [[Application Access]] page to specify the applications the user can access.
-:* '''Attribute for Application -''' The name of the SAML attribute that designates the user's application.
+:* '''LDAP Attribute for Application -''' The name of the LDAP attribute that designates the user's application.
 ::: The attribute must contain the application's ''record ID''.
 ::: To get a record ID:
@@ Line 38: / Line 35: @@
 :::: The user can change it in their [[Personal Settings]]. An admin can do so in the [[Users]] page.
-:* '''Attribute for Role -''' The name of the SAML attribute that designates the user's role in the application.
+:* '''LDAP Attribute for Role -''' The name of the LDAP attribute that designates the user's role in the application.
 ::: The attribute must contain the role's ''record ID''.
 ::: To get a record ID:

Search

where to start

Feedback

customize and design

resources

Tools

Personal tools

Difference between revisions of "Common: LDAP Settings"

Revision as of 08:03, 23 December 2020