Before mapping roles, ensure that you have enabled LDAP/SSO authentication.
Remarque : We have verified identity providers AD FS and Ping Identity for Spectrum Technology Platform.
When you configure Spectrum Technology Platform to use
LDAP/SSO for authentication, by default, the role values must match the Spectrum Technology Platform role names, exactly in order, to grant the role. For example, to
grant the designer role, the role you specify must be "designer."Remarque : If you are using Spectrum Spatial, you must also update the Jackrabbit configuration file. For more
information see Utilisation de LDAP ou Active Directory pour l'authentification.
You can map non-matching LDAP/SSO role values to an existing Spectrum Technology Platform role name. You can also map an LDAP/SSO role value with the same name as a Spectrum Technology Platform role to a different role. For example, one of the built-in roles is "designer." If you have an LDAP/SSO role value that is also named "designer," but you want it to map to another role, you could create a role map.
To map an LDAP/SSO role value to an existing Spectrum role:
Users who have been assigned an LDAP/SSO role will now be granted the
role you specified for them the next time they log in to Spectrum Technology Platform.
To remove a mapping, enter the LDAP attribute you want
to unmap in the value field in the removeMapping section in Spectrum JMX
console.