on 04-06-2016 9:32 AM
Hi GRC experts,
I am facing issues where systems are not showing in PSS request.
Steps done:
1. Group field mapping is configured as per the ldap configuration guide
2. Auth and role syncs are performed successfully for the ldap connector
3. Authorization object: GRAC_SYS assigned to the shared ID of the services.
Login to end user logon page is successful with <domain name>\<userid> is entered. Could it be that system names are not showing as it is looking for an exact match of <domain name>\<userid>? If yes, how to configure login without domain name entered on end-user logon page?
Any inputs or guide is much appreciated here.
Regards,
Debbie
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Patrick,
Yes, PSS is enabled for the connectors in Maintain Connector Settings.
I'm currently implementing GRC 10.1/SPS11. In addition to the steps applied, I have also followed the notes below to enable user authentication from AD (LDAP) 'til this point:
Steps done:
1. Group field mapping is configured as per the ldap configuration guide
2. Auth and role syncs are performed successfully for the ldap connector
3. Authorization object: GRAC_SYS assigned to the shared ID of the services.
4. Applied notes 1584110, 1604946, 1978357 to enable LDAP authentication upon login
I was able to successfully login to the end user logon page with <domain name>\<userid>
However, I see that user on the password reset request page displays with <domain name>\<userid>.
Does GRC verify based on the user to determine the systems to display in the request form? If yes, how do I configure to login without entering domain name?
Regards,
Debbie
Debbie,
Thanks for tagging your question with GRC 10.1 and giving us some clue, but unfortunately that is not quite enough. Please see the Minimum Required Information document for discussions in this space; providing adequate information helps the SCN members, who are in most cases here as volunteers, help you more efficiently. Thanks.
Gretchen Lindquist
Space Moderator
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.