Project

General

Profile

Actions
Copy link

Feature #3299

open

Role synchronization - support creating no-login roles

Added by Alena Peterová almost 2 years ago. Updated almost 2 years ago.

Status:
New
Priority:
Normal
Assignee:
Peter Štrunc
Category:
Synchronization
Target version:
13.1.0
Start date:
03/13/2023
Due date:
% Done:

0%

Estimated time:
Owner:

Description

When synchronizing roles, please add an option to not activate the option "Automatically create accounts" for the synchronized roles.

Use case:
  • AD groups are synchronized to IdM as roles for handling group membership
  • We have one main "login role" which creates accounts. We don't want other AD roles to create accounts automatically (=> they must be "no-login" roles)

This option should be similar as e.g. "Enable forward provisioning" specific settings of the role synchronization.
After that, the wizard for AD groups should also prepare this advanced feature https://wiki.czechidm.com/devel/documentation/wizards/ad_group#attributes

Actions
Copy link
 #1

Updated by Tomáš Doischer almost 2 years ago

  • Target version set to 13.1.0
Actions
Copy link

Also available in: Atom PDF