Versions Compared

Version Old Version 4 New Version 5
Changes made by

Rohitesh Gupta (Deactivated)

Rohitesh Gupta (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)" and set Enable Admin Attribute to true.

  3. Login as a LDAP user who has this attribute "givenName=barrett" configured in the AD/LDAP Server.

  4. Check if the user is logged in as System Admin User and has access to System Console

    1. User should be logged in as System Admin User. User should be able to access System Console without any errors

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

Disable LDAP Admin Filter

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)"

  3. Login as a LDAP user who has this attribute "(givenName=barrett)" configured in the AD/LDAP Server

  4. Now login as sysadmin and set Enable Admin Attribute to false and check

    1. Existing LDAP System Admin users should not be demoted to members. Any new LDAP user who tries to login with "givenName=barrett" will no longer be considered a System Admin user and instead should be considered a regular member

Change LDAP Admin Filter

...

Ensure LDAP setup is done correctly on an instance

...

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

Change LDAP Admin Filter

  1. Ensure LDAP setup is done correctly on an instance

  2. Navigate to System Console > AD/LDAP and set Admin Attribute to "(givenName=test)"

  3. Now on a new browser login with a user who has "(givenName=barrett)". User would be logged in as Member.

  4. Navigate to System Console > AD/LDAP and set Admin Attribute to "(givenName=barrett)"

  5. Revoke session of all users and ensure the user in step 3 logs in again.

  6. Next time the user logs in, the user should be converted to a System Admin user.

LDAP Admin Filter & Guest Attribute

...

Ensure LDAP setup is done correctly on an instance

...

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

LDAP Admin Filter & Guest Attribute

  1. Ensure LDAP setup is done correctly on an instance

  2. Ensure Guest Access is enabled in System Console > Guest Access.

  3. Navigate to System Console > AD/LDAP and set Admin Filter to "(givenName=barrett)" and set Guest Attribute to "(sn=Butler)" .

  4. Now on a new browser login with a user who has both sn=Butler and givenName=barrett.

    1. User should be logged in as a System Guest user and should not have System Admin privileges.

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

SAML Admin Attribute

  1. Ensure SAML setup is done correctly on an instance

  2. Navigate to System Console > SAML 2.0 and set Admin Attribute to "isAdmin=true" and set Enable Admin Attribute to true.

  3. Login as a SAML user who has this attribute "isAdmin=true" configured in the SAML Server.

  4. Check if the user is logged in as System Admin User and has access to System Console

    1. User should be logged in as System Admin User. User should be able to access System Console without any errors

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

Disable SAML Admin Attribute

  1. Ensure SAML setup is done correctly on an instance

  2. Navigate to System Console > SAML 2.0 and set Admin Attribute to "isAdmin=true"

  3. Login as a SAML user who has this attribute "isAdmin=true" configured in the SAML Server

  4. Now login as sysadmin and set Enable Admin Attribute to false and check

    1. Existing SAML System Admin users should not be demoted to members. Any new SAML user who tries to login with isAdmin=true will no longer be considered a System Admin user and instead should be considered a regular member

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

Change SAML Admin Attribute

  1. Ensure SAML setup is done correctly on an instance

  2. Navigate to System Console > SAML and set Admin Attribute to "isAdmin=TEST".

  3. Now on a new browser login with a user who has isAdmin=true. User would be logged in as Member.

  4. Navigate to System Console > SAML and set Admin Attribute to "isAdmin=TRUE".

  5. Revoke session of all users and ensure the user in step 3 logs in again.

  6. Next time the user logs in, the user should be converted to a System Admin user.

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass

SAML Admin Attribute & Guest Attribute

  1. Ensure SAML setup is done correctly on an instance

  2. Ensure Guest Access is enabled in System Console > Guest Access.

  3. Navigate to System Console > SAML and set Admin Attribute to "isAdmin=TRUE" and set Guest Attribute to "isGuest=TRUE".

  4. Now on a new browser login with a user who has both isGuest=true and isAdmin=true.

    1. User should be logged in as a System Guest user and should not have System Admin previliges.

Setup

Results

Tester: Rohitesh Gupta (Deactivated)

Test Server: 

Build Hash: 

Date: 

Pass