Skip to main content

Create and manage groups

A group in IDaaS is a set of users. You can add users to groups or remove users from groups that your role allows you to manage. If your role includes permission to Manage All Groups (see Create, assign, and manage roles), you can create as many groups needed to control which applications users can access.

This section explains how to create, edit, delete groups, and configure advanced settings for the Group Attribute Type.

Create a group

  1. Click > Members > Groups. The Groups List page appears.
  2. Click . The Add Group dialog box appears.
  3. Enter a Group Name.
  4. Optional. In the Group Attribute field, enter additional attributes that are associated with the group. These attributes can be mapped into SAML assertion attributes and OIDC claims and are returned in a SAML or OIDC and OAuth response.
  5. Click Add. The group is added to the Groups List page.

Edit a group

  1. Click > Members > Groups. The Groups List page appears.
  2. Click the group name. The Edit Group dialog box appears.
  3. Edit the Group Name as required.
  4. Optional. In the Group Attribute field, enter additional attributes that are associated with the group. These attributes are returned in a SAML or OIDC and OAuth response.
  5. Click Save.
warning

You cannot change the name of a group associated with an Active Directory.

Delete a group

  1. Click > Members > Groups. The Groups List page appears.
  2. Click for the group you want to delete.
  3. Click Delete on the confirmation prompt.

Sort and filter groups

  1. Click > Members > Groups. The Groups List page appears.
  2. You can do the following actions:
    1. Click the arrow next to the Group Name column heading to sort the groups numerically or alphabetically.
    2. To select multiple groups, click the checkbox next the desired groups.
    3. To select all groups, select the checkbox next the Group Name.
  3. To filter groups, click to enable filtering.
    1. Select your filter options. You can filter by Group Name or Group Type (None, Directory, Local).
    2. Click Apply.

Export a group list

  1. Click > Members > Groups. The Groups List page appears.
  2. Click to export the user list to a .CSV file. The Export Table to CSV dialog box appears.
  3. Optional: Enter a Name for the file.
  4. Optional: Enter a Description for the file.
  5. Select the File Delimiter radio button, Comma (,) or Pipe (|).
  6. Select the attributes you want to include in the file.
  7. Click Export. The CSV file is exported to the Reports page (see Manage reports).
note

You can export a maximum of 100,000 records.

Select Advanced Settings for group attribute type

  1. Click > Members > Groups. The Groups List page appears.
  2. Scroll to the bottom of the Groups List page.
  3. Click Show Advanced Settings. The Group Attribute Type options appear.
  4. Select one of the following options:
    1. String. Include string content to a maximum 10,000 characters.
    2. OIOSAML. Supports Danish OIO SAML Web SSO Profile 3.0 for interoperation with Kombit Context Handler 2. This information can be encoded and returned in a SAML assertion defined in OIOSAML and returned to Kombit Handler 2.
  5. Click Save.