Role Settings Tab
The General tab allows administrators to configure specific distinguished name (DN) settings.
 |
Review the Configuration Module Interface Overview to configure RBAC or ABAC module visibility.
To configure DN settings, type the DN name or search. The search feature allows administrators to navigate and select the correct DN.
 |
Note
The specific directory layout will likely display differently since global RapidIdentity Portal configuration determines visibility.
Upon selecting the correct LDAP entry, click OK and then modify the visible fields accordingly.
Field Name | Description |
|---|---|
Roles Placement Base DN | The location in the directory where RapidIdentity Portal will store groups that it creates and manages. |
Allow Distribution List Creation | Allows the 'Distribution List' type when creating a group. Only applies to RapidIdentity Portal instances using Active Directory. |
Maximum Number of Concurrent Roles Syncs | Set the limit of groups that can sync concurrently. This is used to tune group synchronization for organizations with extremely large groups. |
Enable Role Auto-Synchronization | If selected RapidIdentity Portal will regularly (based on settings at the group level) calculate who should be a member of a particular group based on the group's settings and will then write that membership information to the group object in the directory. In eDirectory, the associated back-reference information is also written to the user object. |
Enable Group Auto-Import | Enables or disables the Roles Auto Import Job. |
Maximum Number of Roles to Return | Used for organizations with many groups. This keeps a search from potentially overloading services while it works to return a large number of groups. 0 represents no limit. |
Preload Roles | Determines if groups are loaded when a Roles tab is loaded or only when the search button is pressed. |
Enable Wildcard (*) Searches | Enables or disables the ability to do wildcard searches in any tab. |
Write SAMAccountName Value to Role (Active Directory Users Only) | If selected, the group name will also be written to the SAMAccountName attribute. |