Is there a way to assign OIDC user to local XOA group (which will have target permissions applied)?
-
Hi,
auth-oidc plugin seems to be working fine, and we are able to login with OIDC via AD FS to our XOA.
We've also configured claim rule for target group with target user in AD FS.
Is there a documentation of how to auto assign that target user into correct XOA group (which will have target permissions applied)?
There is some info on the internet of how to do it but it's for XO not XOA I'm afraid.
-
@olivierlambert, you guys have that documentend for XCP-ng somewhere?
-
Hi,
It's an XO question, not an XCP-ng one. As this is a community forum, it happens we took some time to answer
I told the XO team to come here when they can! -
as far as I know, there is no support to extract a group from the oidc plugin
-
@florent In that case, every time we login for the first time via OIDC to XOA, admin will have to manually add newly created user to specific group?
There is no way to map AD FS group hidden in claim to XOA local group via some config file to automate this?
-
Is there a plan at least for the future to implement those groups from AD FS claims? Having such feature is something desirable and looks like the hardest bit is already done.
-
Hi,
This is something else to add to the backlog if we want to do it, and then how to prioritize it. If you want to speed things, can you open a support ticket? It's easier to define feature prioritization with a customer, especially when there's no strong demand in the community
-
@olivierlambert, yes, thank you. I will open that ticket.
