Big news! The community will be moving to a new platform April 21. Read more.
Big news! The community will be moving to a new platform April 21. Read more.

LDAP groups connected to LRE roles/groups

Idea ID 2867284

LDAP groups connected to LRE roles/groups

0 Votes

Reason: our Security department requests to manage authorization outside of LRE.

Idea:

Because we implemented the interface to LDAP for authentication it would be a perfect solution to have also the support of LDAP groups. I expect that we have several groups in LDAP. Every one of these groups is assigned/linked to one role in LRE. The users defined in the assigned LDAP group should be added to the role/group in LRE by the interface.
I my opinion it is less important how the users are added to a specific LRE role/group, some ideas
- added/removed with a job that runs frequently
- after successful login of a specific user the user is added temporarily to that group as long as the user is logged in
Depending on the solution there is no need any more to manage the (not administrator) users in LRE. Whenever there is a user member in a LDAP group that is assigned/linked to a group in LRE that user can login to LRE and gets the correct permissions from the LRE group(s) he is member of.

Tags (3)
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.