AD Group for Gallery Admin

Are you able to use AD Groups for Gallery Admin functionality rather than provisioning individual users? I've read the history and it sounds like this is implemented for collections (which i've tested successfully), but possibly not for Gallery-wide permissions.

Gallery

Accepted answers

All comments

naleti

We integrated OKTA with AD Groups, and when users in these AD Groups log into Gallery for the first time they will be provided default viewer access. Admin will individually assign roles for each user that is logged in via OKTA.

Even though AD Group information is sent in SAML assertion there is no way we could map the Groups to Roles in the Gallery. The Group option is just not available. Not even for Collections with SAML integration.

I am assuming this is only available when using Integrated Windows Authentication.

Csand

Thank you, @naleti . I'm shocked that Alteryx can't handle group-based authorization for an enterprise server product.

patrick_digan

@adarsh2707 what version of gallery are you on? If it's 21.4+ and have some knowledge of APIs, then you can use the V3 endpoints . I imagine you'd do something like hit the v3/users endpoint to get a list of IDs, then for each ID that you want to update, you'd do a GET request against /v3/users/{id}, make any updates that you need, and then a PUT request against /v3/users/{id} to update the record.

adarsh2707

Unfortunately I am unaware of this V3 endpoints API. Will have a look.

While we are at it, Just another question @patrick_digan,

Is there any direct way to update it for an AD group and in turn it gets affected for all users under that AD group.
or would it be possible to add a Distribution list ( AD group email ID, with all users credentials grouped together) and ensure all users in that DL can be configured in one go

We need this to propose to our clients as they may not be comfortable with API

patrick_digan

@adarsh2707 I don't know of a direct way for you to tie these user items to an AD group.

Quick Links

This months top contributors

mceleavey 383

mbarone 337

Hollingsworth 335

LanisC 335

JeffF 335