Adaxes

Security role is not propagating to objects within the Business Unit

0 votes

I have applied a security role to a group at the top of a Business Unit Container and set it to apply to the subtree and it does, all Containers and Business Units do have that security role applied, but the objects within the Business Unit do not get the security role. So it looks something like this:

Top Business Unit Container - Security Role A Sub Business Unit Container - Security Role A Sub Business Unit - Security Role A Security Group - No Security Role

So the group assigned to that Business Unit cannot manage the group within that Business Unit. Did I apply the permissions wrong or is there some setting I need to change?

by (100 points)
0

Hello,

For troubleshooting purposes, please, provide a screenshot of the security role including the Assignments section. You can post it here or email at support@adaxes.com.

Also, please, specify how exactly you see the role not being applied to the corresponding trustees. Any additional details will be much appreciated.

by (288k points)

Please log in or register to answer this question.

Related questions

0 votes
1 answer
Is it better to grant access via multiple OU and group assignments in the security role or use a business unit?

I have 18 domains managed by Adaxes and have noticed that Admin (full access) t all objects acts normally, but for piecemeal scopes like Service Desk that scopes to individual ... role (including 16 denies) and expect it to grow as we add more domains.

asked Sep 20, 2022 by DA-symplr (100 points)
0 votes
1 answer
How to make Business Unit to check if all of the Email Proxy Addresses does not contain 'SMTP:%userPrincipalName%'?

Greetings. When I create the parameters to make a business rule that looks for users whose Email Proxy Adresses does not contain 'SMTP:%userPrincipalName%', it still generates profiles ... and primary SMTP address don't match. Version is 2023 How rule is set

asked Dec 19, 2022 by MShep (80 points)
0 votes
1 answer
Business Unit Not Showing All Objects

New to Adaxes and I'm working on creating Business Units. However, I noticed that when I create a new BU and select all objects in an OU for users, not ... Domain Admin. Any help with understanding why this is occurring would be greatly appreciated. Thanks!

asked Sep 18, 2014 by GeorgeM (100 points)
0 votes
1 answer
Security Role to allow moving computer objects between OUs?

Hello all, I'm sure this is possible, but I'm confused on a few points. I'm trying to set up the security role and matching homepage action that will allow a user ... I'd like to use the least amount of permissions possible, just for security's sake. Thanks!

asked Jan 18, 2017 by ctdhelpdesk (190 points)
0 votes
1 answer
Business Rule - 'After user updated' not triggered when the user is added to a group.

I need a way of triggering a business rule based on the user (and not the group) being added or removed from a group. The reason I would like this triggered on the user is so ... prefer not to do that. I am checking to see if there is another way to do this.

asked May 16, 2023 by mark.it.admin (2.3k points)
3,538 questions
3,229 answers
8,224 comments
547,747 users