A linked directory store associates one directory store with another to extend user management and validation while maintaining a separate authentication source.
With a linked directory store, the system can:
-
Authenticate users through a primary directory store, such as SAML.
-
Perform automated user onboarding using Active Directory or Entra ID groups.
-
Support dynamic user group mapping.
-
Validate user status through the linked directory store.
Configuration
Follow these steps to configure a linked directory store:
-
Navigate to Platform Configuration → Authentication → AD and Directory Store.
-
Select the required SAML Directory Store.
-
Configure the required Active Directory (LDAP/LDAPS) or Azure Entra ID directory store as the Linked Directory Store.
-
Save the configuration.
User Group Integration
Follow these steps to use a linked directory store with user groups:
-
Navigate to Manage → User Group.
-
Select an Active Directory based User Group.
-
Select the Directory Store configured with the Primary SAML Directory Store Type from the drop-down list.
-
Map Linked Directory Store For New User : When enabled, newly provisioned users are associated with the Linked Directory Store configured for the selected Primary Directory Store. Instead of being provisioned directly in the Primary Directory Store, the user account is created and mapped using the corresponding Linked Directory Store.
-
Save the configuration.