Re: Setting default role for LDAP users

Phillip_Montgom · ‎05-12-2020

Is there a way to set a default Role for LDAP users?

We want everyone in LDAP to have have the basic "Applications & Dashboards Viewer" role without needing to go to every single user.

Nawaz_Ali_Moha1 · ‎01-29-2021

Hello Phillip,

I would suggest referring to section "Configure SAML Attribute to Role Mapping" in the below documentation link:

https://docs.appdynamics.com/display/PRO20X/Map+SAML+Group+to+AppDynamics+Roles

Default permissions will only get applied to the SAML users when the SAML Group Attribute Name configured in the Administration page is not same as the Groups attributes in the SAML response.

In the below case default permission will be applied:

SAML Group Attribute Name - XYZ

SAML response is as below

<saml:Attribute
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"
Name="Groups">
<saml:AttributeValue
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:type="xs:string">AppD_Admin
</saml:AttributeValue>
</saml:Attribute>

Setting default role for LDAP users

Controller

Licensing

User Management

Index This | Why did the turkey cross the road?

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

Feel the Splunk Love: Real Stories from Real Customers

Are you a member of the Splunk Community?