Active Directory group integration for user authentication

We would like to give visibility (at least read only access) to Aha to a large amount of users (> 1K) in our organization however this is currently not practical as each user needs to be added manually one by one. Even when using SSO you still need to add and set the permissions individually for each user.

We are already using single sign-on with Active Directory but would like to see the ability to map a specific role (e.g. Reviewer) to an Active Directory group. 

Could not find a similar idea or request. The closest was https://big.ideas.aha.io/ideas/APP-I-1383 however this is more about defining and using groups internally in Aha.

 

  • Roman Hernandez
  • Sep 20 2018
  • Already exists
Release time frame
  • Sep 25, 2018

    Admin Response

    Thank you for your idea. This should be possible by including product prefix and role as attributes in your SAML SSO setup. This article provides more details. See the Product prefix and Product role sections toward the bottom of the article.

  • Attach files
  • Roman Hernandez commented
    October 19, 2018 11:39

    Hi, I don't think the proposed solution in the article does not match what we need. We don't want to give access to the whole organization that uses SSO but rather limit that to a specific group defined in AD, is there a way to configure that already?