Groups

The groups configuration contains the settings required to manage the group data stored in the user registry.

Steps

1. From the top menu, go to AAC > Manage > SCIM Configuration.

2. Click Groups.

3. Modify the following settings as needed. If an Verify Access Runtime server connection is selected in User profile,
   • It also takes effect for groups.
   • The list of available LDAP group related object classes is only the values from the primary LDAP server.
   • The Group DN Attribute selection on this page is only the values from the primary LDAP server.

   LDAP Group Related Object Classes

   The LDAP object classes used to reference a group object. These values are the object classes that will be looked for when parsing the response to an LDAP sub-schema query. By default, the list is populated with groupOfNames.

   Group DN Attribute

   This field contains the DN attribute which will be used to create groups.

   The User Profile LDAP server connection and Group object classes settings must be set in the respective fields before any LDAP attributes are made available.

4. Click Save to save the changes. Due to the caching of configuration data within the runtime, it might take up to 30 seconds before any deployed configuration changes become active.

Parent topic: SCIM configuration