Assign Role Based on LDAP Group Membership Example | Teradata Viewpoint - Example: Assigning a Teradata Viewpoint Role Based on LDAP Group Membership - Teradata Viewpoint - Teradata Workload Management

Teradata® Viewpoint User Guide - 24.04
Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
Lake
VMware
Product
Teradata Viewpoint
Teradata Workload Management
Release Number
24.04
Published
April 2024
ft:locale
en-US
ft:lastEdition
2024-04-29
dita:mapPath
xwb1711972215358.ditamap
dita:ditavalPath
tky1501004671670.ditaval
dita:id
xvu1467243446040
lifecycle
previous
Product Category
Analytical Ecosystem

In the following example, LDAP Value represents the distinguished name (DN) of a group. When Type is Group, the Group Attribute Name field is used for mapping and represents the group attribute where the user DN is stored.

This example assigns users to a Teradata Viewpoint role based on membership in an LDAP group with the following structure:

dn: cn=DBAs,ou=Groups,dc=teradata,dc=com
uniqueMember: cn=User2,ou=Users,dc=teradata,dc=com

To map User2 to the Teradata Viewpoint role Administrator, create the following role mapping:

  1. Type ou=Groups,dc=teradata,dc=com in the Group Search Base field.
  2. Type uniqueMember in the Group Attribute Name field.
  3. Set Type to Group.
  4. Type the LDAP Value cn=DBAs,ou=Groups,dc=teradata,dc=com.
  5. Set Viewpoint Role to Administrator.