Dear All,
Good Morning,
We configured AWX with LDAP successfully, we wanted to assign permission based on the group created in LDAP and use that group in AWX and assigned permission to the user for specific resources under that group.
Please let us know if I can achieve this. Where I need make changes to achieve this configuration.
I am sure am missing something.
Hello Nilesh,
in my setup i use following:
LDAP USER FLAGS BY GROUP
I am using this field to set groups/user to superuser roles
Example:
`
{
“is_superuser”: [
“cn=xxx-admin,cn=groups,cn=accounts,dc=domain,dc=de”,
“cn=other-group,cn=groups,cn=accounts,dc=domain,dc=de”
]
}
`
LDAP ORGANIZATION MAP
Here I map the users within organization groups (for normal users and admins, not super-admins).
Example:
`
{
“Alpacas Farm”: {
“remove_admins”: false,
“admins”: [
“uid=xxx,cn=users,cn=accounts,dc=domain,dc=de”,
“uid=yyy,cn=users,cn=accounts,dc=domain,dc=de”,
“uid=zzz,cn=users,cn=accounts,dc=domain,dc=de”
],
“users”: [
“cn=usergroup-blablubb,cn=groups,cn=accounts,dc=domain,dc=de”
]
},
`
I hope this can help you.
regards
Flo