i have tried to get user group name as value in auth/me URL, but it returns only objectId of group.
How to get the group name instead of objectId.
In my manifest i have added
"groupMembershipClaims": "SecurityGroup"
optional claims also added
i don't have any onpremises AD connect
I need the manifest configuration to get the group name in auth/me url
I have tried this in my lab and it is working for me.
This option is available only if you select "groups assigned to the application" option.
If you select any other option apart from this, "cloud-only group display names (preview)" it will be greyed out.
Since this option is still in preview, there is some enhancements going on at backend.
For more information, you can also refer this documentation Configure group claims for applications.
I tried to reproduce the same in my environment:
Manifest:
"given_name": "kav",
"groups": [
"xxxf-94bc-xxxxxx7d",
"xxxx-2459exx5a"
],
The jwt cannot contain group name but it gets Id’s of the groups
You can customize group claim name following Configure group claims but it required Onpremise AD which you mentioned is not there as sAMAccountName option is the option present on Group objects synced from Active Directory.
Else You can check all the default properties using Microsoft graph Api Graph Explorer | Try Microsoft Graph APIs - Microsoft Graph
https://graph.microsoft.com/v1.0/groups/<groupId>
Related
I am trying to make a field optional in the Dynamics CRM
The name of the entity is Case and the internal name of the field is customerid
When I try to change it from mandatory to optional, I get the below error message
You can not complete this action for this component because of the
configuration of its managed properties.
this is happening in Dynamics CRM online
I'm pretty sure you won't be able to.
It's one of the few fields where mandatory behaviour is enforced at the platform level, whilst most mandatory fields are enforced only on the user interface.
If I remember correctly, tring to create a case without a customer via the API will result in an exception.
Looking at the managed properties for the customerid field on my recently provisioned CRM Online, shows that I'm unable to change the requirement level - I don't even get the option for setting it as optional.
I wanted to remove the field from the form, but I was not able to do it from the UI
So I used XRMToolBox.
There is a plugin called as FormXML Manager, enable it in the XRMToolBox and load the entities. Once this is done you can remove the required field and publish the form
I'm trying to find a list of users for a specific project (by projectKey) who possess the issueadmin permission. I've found a documented API that gets me pretty close:
api/permissions/search_project_permissions
but the response that I get back only has summary information: counts of groups/users for each permission type.
search_project_permissions response
Does anybody know if there's a way to get to the login details for the users?
There is an "internal" web service (meaning it could change without notice!) that does this. You'll use it like so:
http://myserver.myco.com/api/permissions/users?projectId=[project guid]&permission=issueadmin
In Web API interface use the "Show Internal API" checkbox at the top of the left column to see it.
just noticed in Sonarqube v6.7 it works as follows:
https://sonarqube.dhl.com/api/permissions/users?projectKey=<KEY>
https://sonarqube.dhl.com/api/permissions/users?projectKey=<KEY>&permission=issueadmin
https://sonarqube.dhl.com/api/permissions/users?projectKey=<KEY>&permission=issueadmin&permission=scan
All possible permissions are (reg. Browse, See Source Code, Administer Issues, Administer and Execute Analysis):
admin
codeviewer
issueadmin
scan
user
We are working on integration Dynamics CRM with Filenet. This requires support of the following two scenarios:
Upload a document in Filenet through web service and retrieve a unique URL for uploaded document from Filenet
Download document through unique URL of Filenet
Development platform is .NET.
Any ideas about the integration mechanism for same? Is there any webservice exposed by Filenet which we can consume for above 1 & 2 requirements?
The url's in filenet are always in a fixed format, so that's not difficult.
http://P8_client_server_name/application_name:port/getContent?objectStoreName={84A4A727-37E2-4994-B060-8531FAF75612}&objectType=document&id={559946a8-2007-4096-AC67-773A8540AE6}
So call the getContent page with the parameters opbjectstore name or ID, objecttype and the id of the document.
Here is an article about the format of the url's it should help you for the downloading part.
About the uploading,
Here are some API samples about sorting a document in the content engine. With the Id created were you can construct the url to return to the client.
In addition to the previous response, for downloading you can also construct a URL for IBM Content Navigator like this
http://myserver.mycompany.com:9080/navigator/bookmark.jsp?desktop=AccountsPayable&repositoryId=AP_P8_System&docid=30dd879c-ee2f-11db-8314-0800200c9a66&template_name=APtemplate&version=released
where
desktop Specifies which desktop to log in to. Specify the ID that is
displayed for the desktop in the ID column on the Desktops tab in the
administration tool. Format: desktop=desktop_ID
repositoryId Specifies the server to log in to. Specify the ID that
is displayed for the server in the ID column on the Repositories tab
in the administration tool. Format: repositoryId=repository_ID
docid The system-generated identification number for the document.
Uses the template_name value as the prefix to this folder ID. Format:
docid=document_ID
template_name Document, Folder, or the name of the custom document
class or item type. Format: template_name=template_name
version current, released, or a specific version number. Format:
version=version_number
vsld The IBM FileNet® P8 version series object, which is the Globally
Unique Identifier (GUID), that is associated with the document.
Format: vsld=GUID_number
Using Navigator menu:
You can get URLs for documents or folders when you select the item and
click Actions > View link.
I am using MemberOf Attribute to enumerate nested groups. I have 2 domains, 2 groups and one user. Please see below for configuration:
Domain DOMAIN-A has domain global group GROUP-A and USER-A.
Domain DOMAIN-B has domain local group GROUP-B.
USER-A is member of GROUP-A.
GROUP-A is member of GROUP-B.
Ideally, GROUP-A should contain GROUP-B in MemberOf Attribute but it does not even have a MemberOf attribute. (I am using an Softerra LDAP Browser 2.6)
Will it be populated after replication? If yes, how to change replication interval? I want to have instant replication.
Thanks
What you want to use is a special attribute called tokenGroups. If you're on FX3.5 you can use this sample - http://dunnry.com/blog/2007/08/01/GettingActiveDirectoryGroupMembershipInNET35.aspx.
If you're wanting to use an older version of .Net or have some control over the process, you can parse out the attribute manually with something like this - http://dunnry.com/blog/EnumeratingTokenGroupsTokenGroupsInNET.aspx.
Finally, your service account or whatever context you're connecting to AD with will need to be in the Windows Authorization Access group if you use tokenGroupsGlobalAndUniversal.
What is equivalent LDAP attributes for Active Directory
I am looking for password using Net::LDAP.
I dont know to how to set the user password using Net::LDAP
Here is a helpful article from Microsoft with some sample code that you might be able to adapt: https://support.microsoft.com/en-us/help/269190/how-to-change-a-windows-active-directory-and-lds-user-password-through
The essential attribute, it seems is: unicodePwd
(a.k.a. Unicode-Pwd
https://msdn.microsoft.com/en-us/library/ms680513(v=vs.85).aspx
)
Also note some cautions and advice from this answer: https://serverfault.com/questions/423345/changing-active-directory-password-over-ldap-using-passwd-ldappasswd-samba
AD attribute names with cross reference of LDAP attribute names
https://msdn.microsoft.com/en-us/library/ms675090(v=vs.85).aspx