AD Group Mapping

Before you can map Active Directory (AD) groups to roles in WorkSpaces Manager, you first need to create and validate the AD groups. You can do this by following the instructions on the Active Directory Groups Page.

Now the Groups have been validated we can now map to Roles to create WSM Role. Go to Security > Roles and click Create Role, enter a Name and click Create.

Once the role has been created, click on it to open the configuration page. In the top-left corner, you'll see the "AD Group Mapping" dropdown. From there, select the Active Directory Group you want to associate with this role.

Next, define the permissions for the role. For example, in this case, we're assigning the WSMTest AD Group and granting users access only to the Admin and WorkSpaces tabs. This ensures users in that group have restricted, role-specific access when using WorkSpaces Manager.

Users who belong to the mapped Active Directory group will automatically have the assigned role applied to them in Portal Users within WorkSpaces Manager.

When users log in to the portal, they will authenticate using their Active Directory credentials (e.g., Domain\username). Once logged in they will only see the sections and functionality that correspond to the permissions assigned to their mapped role.

Refer to the example below to see how these role-based permissions are reflected in the user interface.