Hi all,
I have automation suite configured with AD group.
The moment I put a user inside the AD group he is able to connect to the orchestrator.
However, I would like him to have no permissions outside of the login and then manually assign permissions to him.
In what way can I do this?
Thank you
I don’t have Automation Suite to test this logic but here is what you can try.
Create a Custom Role with No Permissions
Navigate to Tenant → Manage Access-> Roles.
Create a new role, for example, “No Permissions”.
Ensure this role has no permissions assigned to it. This can be done by unchecking all permission options.
Assign the Custom Role to the AD Group
Still in Manage Access, go to Directory Groups.
Find the Active Directory (AD) group you’re using and edit its settings.
Assign the “No Permissions” role to this AD group.
This will ensure users will be able to login but won’t have any permission.
If you need to give permission to any user, add that role to user and user will have highest assign accesses.
Thanks,
Ashok 