Mapping a Content Manager user group to claims forwarded by Access Management
In Content Manager Explorer, map a user group to a specific claim type and value that the external identity provider (IdP) provides and Access Management forwards on to Content Manager.
Before you begin
The following are needed to complete this task:
- You are a member of a group with the System Administrator Privilege.
- The know the exact values of the claim type and claim value to be used in the group mapping.
- The claim type is defined as a forwarded claim in the IdP's configuration (you can also do this after completing this task).
About this task
To automatically assign Content Manager users to user groups when they log in to the system, you can map the user groups to claims that are available from the external identity provider (IdP). The authenticated user will become a member of a group if they have the required claims.
Note that this task applies to general system users only, that is all users other than administrators. The System Administrator group is predefined with a mapping to the Administrator role in Access Management, so you do not need to do this mapping yourself.