Unable to assign entry level permission to user without user explicitly granted access to vault (as opposed to vault access via group)
Unable to assign entry level permission to user without user explicitly granted access to vault (as opposed to vault access via group)
Hello,
When creating a vault in Hub, and assigning 'Restricted' permission to a group at the vault level, non administrative users who are members of said group are not listed for assigning permissions to individual entries. If however a user is explicitly granted restricted permission at the vault level, the same user can then be assigned permission to individual entries.
Is it not possible to assign group targeted permissions at the vault level, while also being able to do per user targeting at the entry level?
Thanks
Joe
All Comments (2)
Hi Joe,
From what I can see on my side, this seems to be working in the Web. How are you trying to assign permission? (via RDM? Workspace? Web?) Meanwhile, I will ask our QA team to do more testing on this. We will let you know if we find anything.
Have a good day!
Maxime Morin
Hi Maxime,
Did some more testing with this, and it seems the issue relates to SCIM provisioning not updating group membership for SSO users that were previously provisioned manually. Seeing some errors on the Entra side when the provisioning task runs pertaining to 2 users that were added manually into Hub prior. Tried deleting one of the users from Hub and then resynced from Entra but it failed to recreate the user, so had to recreate manually, but group membership continued not to be updated, so turned off SCIM and manually added user to group, then reenabled SCIM. Will be able to investigate further when next user is onboarded in few weeks.
Thanks
Joe