Versions Compared

Version Old Version 3 New Version 4
Changes made by

Rohitesh Gupta (Deactivated)

Rohitesh Gupta (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

Mapping to Server Scoped Role - System Admin Filter

LDAP Admin Filter

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)" and set Enable Admin Attribute to true.

  3. Login as a LDAP user who has this attribute "givenName=barrett" configured in the AD/LDAP Server.

  4. Check if the user is logged in as System Admin User and has access to System Console

    1. User should be logged in as System Admin User. User should be able to access System Console without any errors

Disable LDAP Admin Filter

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)"

  3. Login as a LDAP user who has this attribute "(givenName=barrett)" configured in the AD/LDAP Server

  4. Now login as sysadmin and set Enable Admin Attribute to false and check

    1. Existing LDAP System Admin users should not be demoted to members. Any new LDAP user who tries to login with "givenName=barrett" will no longer be considered a System Admin user and instead should be considered a regular member

Change LDAP Admin Filter

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Attribute to "(givenName=test)"

  3. Now on a new browser login with a user who has "(givenName=barrett)". User would be logged in as Member.

  4. Navigate to System Console > AD/LDAP and set Admin Attribute to "(givenName=barrett)"

  5. Revoke session of all users and ensure the user in step 3 logs in again.

  6. Next time the user logs in, the user should be converted to a System Admin user.

LDAP Admin Filter & Guest Attribute

  1. Ensure LDAP setup is done correctly on an instance

  2. Ensure Guest Access is enabled in System Console > Guest Access.

  3. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)" and set Guest Attribute to "(sn=Butler)" .

  4. Now on a new browser login with a user who has both sn=Butler and givenName=barrett.

    1. User should be logged in as a System Guest user and should not have System Admin privileges.