• State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 98 subscribers
  • Views 7111 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How can AD Group Membership be Managed?

ds_walters
over 7 years ago

I'm playing around with group management in Manager and different ways to achieve a similar thing but are running into some troubles. These are my scenarios:

Added AD Group to the IT Shop (service item and onto a shelf)
Requested service item with group
approved service item with group
ran sync
Not added to group

Added AD Group to business role
assigned user to business role
ran sync
not added to group

selected a users AD account in hyperview
assigned AD Group to AD account
ran sync
added to group

It seems I can only directly AD Groups to AD Accounts via Manager while the indirect assignment either through a Business Role or a Service Item doesn't work. Is there some configuration I'm missing here?

Parents
  • 0 over 7 years ago

    If would be a lot easier to answer if you post the version of OneIM you are using.

    Until then, I'll talk about 7.1.1

    Check, that at the AD account the checkbox is set for Groups can be inherited. By default this flag is not set for linked accounts which are account, that you have synced into your DB and linked to a identity (person), but do not have an account definition assigned.

Reply
  • 0 over 7 years ago

    If would be a lot easier to answer if you post the version of OneIM you are using.

    Until then, I'll talk about 7.1.1

    Check, that at the AD account the checkbox is set for Groups can be inherited. By default this flag is not set for linked accounts which are account, that you have synced into your DB and linked to a identity (person), but do not have an account definition assigned.

Children
No Data