Aspera

My organisation has AAD set up for SSO and we have one workspace and therefore the default workspace for all users.

We now want to create some additional Nodes/Workspaces and I want to create SAML Groups that can then be assigned to Workspaces so users log into a default one automatically. For example users in AAD group UK all log into Workspace UK, all users in AAD Group US log into Workspace US etc.

The Groups function looks like it would be perfect for this but when you select "Make this group a SAML group" it is expecting a Distinguished name which is an attribute that does not exist when using AAD. 

Has anyone been able to set up a group using just AAD? I really don't want to be assigning 4000+ users manually.

------------------------------
Mohammed Akhtar
------------------------------

Maybe this link can help:
https://resources.ibmaspera.com/help/saml

------------------------------
Jairo Alberto Florez Caraballo
------------------------------

Original Message:
Sent: Wed November 16, 2022 11:49 AM
From: Mohammed Akhtar
Subject: Creating SAML groups

My organisation has AAD set up for SSO and we have one workspace and therefore the default workspace for all users.

We now want to create some additional Nodes/Workspaces and I want to create SAML Groups that can then be assigned to Workspaces so users log into a default one automatically. For example users in AAD group UK all log into Workspace UK, all users in AAD Group US log into Workspace US etc.

The Groups function looks like it would be perfect for this but when you select "Make this group a SAML group" it is expecting a Distinguished name which is an attribute that does not exist when using AAD. 

Has anyone been able to set up a group using just AAD? I really don't want to be assigning 4000+ users manually.

------------------------------
Mohammed Akhtar
------------------------------

Thanks for the reply, this documentation that I have already been sent by support and had our AD gurus look at, what we are all stumped on is this:



The "Distinguished name" property does not exist in Azure Active Directory for groups, so is a mistake in the labelling and it should be asking for something else? If not how would an organisation that is purely cloud based via Microsoft for their IdP achieve this?

------------------------------
Mohammed Akhtar
------------------------------

Original Message:
Sent: Mon December 05, 2022 02:53 PM
From: Jairo Alberto Florez Caraballo
Subject: Creating SAML groups

Maybe this link can help:
https://resources.ibmaspera.com/help/saml

------------------------------
Jairo Alberto Florez Caraballo

Original Message:
Sent: Wed November 16, 2022 11:49 AM
From: Mohammed Akhtar
Subject: Creating SAML groups

My organisation has AAD set up for SSO and we have one workspace and therefore the default workspace for all users.

We now want to create some additional Nodes/Workspaces and I want to create SAML Groups that can then be assigned to Workspaces so users log into a default one automatically. For example users in AAD group UK all log into Workspace UK, all users in AAD Group US log into Workspace US etc.

The Groups function looks like it would be perfect for this but when you select "Make this group a SAML group" it is expecting a Distinguished name which is an attribute that does not exist when using AAD. 

Has anyone been able to set up a group using just AAD? I really don't want to be assigning 4000+ users manually.

------------------------------
Mohammed Akhtar
------------------------------