Re: Setting default role for LDAP users

Phillip_Montgom · ‎05-12-2020

Is there a way to set a default Role for LDAP users?

We want everyone in LDAP to have have the basic "Applications & Dashboards Viewer" role without needing to go to every single user.

Nawaz_Ali_Moha1 · ‎01-29-2021

Hello Phillip,

I would suggest referring to section "Configure SAML Attribute to Role Mapping" in the below documentation link:

https://docs.appdynamics.com/display/PRO20X/Map+SAML+Group+to+AppDynamics+Roles

Default permissions will only get applied to the SAML users when the SAML Group Attribute Name configured in the Administration page is not same as the Groups attributes in the SAML response.

In the below case default permission will be applied:

SAML Group Attribute Name - XYZ

SAML response is as below

<saml:Attribute
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
Name="Groups">
<saml:AttributeValue
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:type="xs:string">AppD_Admin
</saml:AttributeValue>
</saml:Attribute>

Setting default role for LDAP users

Controller

Licensing

User Management

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Splunk Community Badges!

How to find the worst searches in your Splunk environment and how to fix them

Share Your Feedback: On Admin Config Service (ACS)!

Join the Conversation