• State Suggested Answer
  • Locked Locked
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 95 subscribers
  • Views 6772 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Configuration Data for System User Dynamic Authentication

Thilo.Fischer
over 7 years ago

The Configuration Guide gives the following sample of configuration data for dynamic authentication modules:

 

<DialogUserDetect>

   <Usermappings>

      <Usermapping

         DialogUser = "dlg_kst"

         Selection = "select 1 where %uid% in (select uid_personhead from

         profitcenter)"/>

      <Usermapping

         DialogUser = "dlg_all"/>

   </Usermappings>

</DialogUserDetect>

 

Is there a comprehensive list of variables (like %uid% in the sample above) which may be used within this kind of XML config?

I would be mainly interested in performing a check against the Windows logon-id that is requesting authentication.

Thanks!

 

Parents
  • 0 over 7 years ago
    Hi Markus, I'm using version 8.0

    Use case looks something like this: there are standard Windows accounts, e.g. DOMAIN\johndoe, and admin Windows accounts identified by an "-a" suffix, e.g. DOMAIN\johndoe-a

    Standard Windows accounts should have restricted (read-only) access in One Identity, whereas Windows admin accounts should have administrative access in One Identity.

    Any suggestions?
Reply
  • 0 over 7 years ago
    Hi Markus, I'm using version 8.0

    Use case looks something like this: there are standard Windows accounts, e.g. DOMAIN\johndoe, and admin Windows accounts identified by an "-a" suffix, e.g. DOMAIN\johndoe-a

    Standard Windows accounts should have restricted (read-only) access in One Identity, whereas Windows admin accounts should have administrative access in One Identity.

    Any suggestions?
Children
No Data