Hi all,
We are trying to setup SAML integration with our Author environment. As i understand, anyone who tries to login, their User account is created and added to the groups mentioned in the SAML configuration post successful authentication with IDP. Now, in case someone outside of our author group has this link and tries to access this, how can i prevent him from being added to the groups i created ?
Thanks,
Abhishek
@kolluax Normally how it works is the users who wants to login to AEM Author has to apply for access roles(Author, Approver, Admin) within the organization and get the approval for the roles and that group information will be stored in either LDAP/Active Directory. When the IDP (like Salesforce or Okta or other IDPs) authenticates the user it will look for the roles assigned for the user from the backend and return that group to AEM through SAML post back. Just because an user have access to link to IDP to login doesn't mean that user can access the author. The user has to have the actual roles assigned in the backend to make the whole thing work. Hope this helps!
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.