Assigning roles based on LDAP user groups

For LDAP integration, it is recommended that you assign roles based on your LDAP groups.

To ensure that users have the correct roles as soon as they log in, you create groups in Studio that have the same name as your LDAP groups, but in lowercase, then assign the correct roles to each group.

To create a group and then assign a role to that group:

  1. From the Studio menu, select Control Panel.
  2. On the Control Panel, click User Groups.
    User Groups page with no groups added
  3. On the User Groups page, to add a new group:
    1. Click the Add button.

      The new group page is displayed.

      User Groups page with fields to add a group
    2. On the new group page, in the Name field, type the name of the group.

      Make sure the name is the lowercase version of the name of a group from your LDAP system. For example, if the LDAP group is called SystemUsers, then the user group name would be systemusers.

    3. In the Description field, type a description of the group.
    4. Click Save.

      The group is added to the User Groups list.

  4. To assign the group to a role:
    1. In the Control Panel menu, click the Roles option.
    2. On the Roles page, for the role you want to assign the group to, click the Actions button.
    3. In the menu, click Assign Members.
    4. Click the User Groups tab.
    5. To display the list of available groups to assign to the role, click the Available tab.
    6. Check the checkbox next to the group, then click the Update Associations button.

      The group is added to the Current tab as a group assigned that user role.