Comments (6)
Hello, what version of AzureCP did you try?
from entracp.
i use AzureCP v11 #12
from entracp.
Are you sure nested groups should work?
When you set rights to a group in sharepoint i think it only reference the group by name.
In the claims augmentation i see that the groups augmentent are only the groups the user is direct member of. (AzureCP.cs:952)
from entracp.
I fixed nested groups in v12, which brigs many changes and is still a beta for now.
Nested groups will work only if group claims are created with the ID of groups (and not their DisplayName).
More information on https://github.com/Yvand/AzureCP/releases/tag/v12
from entracp.
i installed now beta version 12 of azurecp...
config Global: Display the UserPrincipalName (or DisplayName)
config ClaimType: http://schemas.microsoft.com/ws/2008/06/identity/claims/role | Group | Id | DisplayName
now when is set new permission: i got the groups with id... but permission works only with old "groups" with Claimtype = Name...
TrustedIdentityTokenIssuer Config:
DisplayName : Role
InputClaimType : http://schemas.microsoft.com/ws/2008/06/identity/claims/role
MappedClaimType : http://schemas.microsoft.com/ws/2008/06/identity/claims/role
IsIdentityClaim : False
AcceptOnlyKnownClaimValues : False
ClaimValueModificationAction : None
ClaimValueModificationArgument :
KnownClaimValues : {}
UpgradedPersistedProperties :
Any Idea what im doing wrong?
from entracp.
Apart from still being a beta, v12 has breaking changes compared to previous versions, especially for group permissions.
To test permissions reliably, you need to create a new site collection, so that entities already added (regardless if there where deleted or not) do not interfere with the ones you are trying now.
With v12, assuming you use default claim types configuration:
- group permissions are created with group IDs
- nested groups are working
Of course, for group permissions to work, augmentation must be enabled in AzureCP settings
from entracp.
Related Issues (20)
- No SPClaimProvider created HOT 2
- ULS Entries HOT 3
- People Picker not showing results and unable to update claim mappings. HOT 2
- Timeout question HOT 3
- Deployment Status Question HOT 3
- EnsureUser fails in anonymous http context HOT 3
- Initializing settings without opening Central Admin HOT 7
- Token acquisition fails when connecting to azure us gov Entra HOT 23
- Issue with EntraCP in SharePoint 2016 - assembly error HOT 5
- Is ExcludeMemberUsers parameter still valid in EntraCP ? HOT 3
- Unable to map Firstname,lastname and email from Entra ID to SharePoint 2016 HOT 10
- Issue with certificates HOT 2
- Sharing failed: Couldn't resolve user HOT 4
- No users found in People Picker HOT 4
- Unable to setup Alerts in SharePoint 2016 HOT 4
- Restrict searchable users issue HOT 5
- User.ReadBasic.All Application Permission for App Registration? HOT 4
- Azure CP: Permissions are not effective while granted via Azure AD groups. Does work only in one WFE HOT 8
- An exception occurred in EntraCP claim provider when calling SPClaimProvider.FillHierarchy(): Thread was being aborted HOT 2
- Configuration of EntraCP "Yvand.EntraCP V25.0.20240503.33" HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from entracp.