Configure Remote User Group Mapping

GigaVUE‑FM provides the ability to assign user groups to the members based on their existing directory server group membership.

Group Mapping enables you to assign a group (that has corresponding user role privileges) to the members of a specific group. Mapping a remote user group to a local user group provides a granular way the roles are assigned to a group when they log in to GigaVUE‑FM. Moreover, this eliminates the need to create specific roles on the remote server, since a remote user group can be mapped to a local user group.

For example, consider a remote user group with name User_Group1 (in LDAP server). If you map User_Group1 to the Super Admin Group (local user group in GigaVUE-FM), then the users in the User_Group1 will get the privileges of Super Admin Group when the user logs in to GigaVUE-FM. If other users from any other user group log in, these users will get the privileges of the user group configured in the default user group field.

Note
■  When you edit a user group in the user group mapping, the changes will be effective only after you establish a new user session or log out from the existing user session. The changes will not be valid for the current active user session.
■  Only users belonging to the Super Admin User Group or users with write access to the FM Security Management category can enable or disable Group Mapping.

Refer to the following steps to enable User Group Mapping:

1.   Under LDAP > User Group Mapping, click on New.
2. Enter the Remote Group Base DN and select the required Map to Group(s) option for which you want the remote user group to map to.

The following table describes the settings.

Setting

Description

Remote Group Base DN

Specifies the user mapping for a specific Remote Group Base.

Map to Groups

Specifies groups that a remote group can be mapped to.

NOTE: Group Base DN is case insensitive. CN=FMtest is same as cn=FMtest.

3. Click OK to configure remote user group mapping.
4. Check User Group Mapping to enable it.

Now when a remote user logs in, they would be given the role of user admin.