Monday, December 31, 2012 2:58 PM
I am trying to give Managers the ability to see certain knowledge articles on the portal that normal end users can't see. I want to use the Managers Security Group that we already are using in our domain. I have created a User Role named "Help Articles - Mangers" and assigned "Domain\Managers" under the Users section. This doesn't seem to work though. I added a Test User to the Security Group and that user doesn't obtain the "Help Articles - Managers" user role. If I directly add the user's AD account they do get the "Help Articles - Managers" role. I would like to not have to manage this manually and have access controlled through the Managers Security Group. Couple Questions:
1. Is this even possible to use Domain Security Groups within User Roles to maintain membership?
2. If it is, what am I missing here?
3. If it isn't, is there some other way to accomplish this without having to add/remove Managers on an individual basis within the User Role?
Wednesday, January 02, 2013 9:32 AM
Yes, in my knowledge it should be possible to work with global security groups and user roles in SCSM 2012.
Just a quick question: are you using an Active Directory Connector, does this work properly. Have you run it since you added the test user to the security group?
Wednesday, January 02, 2013 8:09 PMYes I am using an AD Connector and it is working correctly. It runs every night and last one finished successfully last night, 1/1. When you pull up a users account in Service Manager, you can't view which groups they are a member of. This makes it seem like it isn't pulling AD group membership.