0 votes

I followed these instructions but still don't see the edit button unless I log in with my full adaxes administrator account.

https://www.adaxes.com/tutorials_AutomatingDailyTasks_AddUsersToGroupsByDepartment.htm#dynamicgroups

I granted the permission "Write Rule-Based Membership" to the Group Manager built in security role.

What am I missing?

by (1.8k points)

1 Answer

0 votes
by (2.7k points)

Hello Mark,

If you can see the Edit button when you log in with the administrator account, it means that there is an issue with the security role assigned to the user that doesn’t see the button. By default, the Group Manager security role is applied to the Owner (ManagedBy) well-known security principal and is assigned over All Objects. This means that the permissions granted by this role apply to the user who is specified in the managedBy attribute of each group.

Make sure that the user that you are logged in with is specified in the managedBy attribute of the group you are trying to edit. Should the issue persist, please, post the screenshot of the security role here or send it to support@adaxes.com. Make sure that the screenshot includes the assignments of the role.

0

Group that I am trying to change to rule-based with my non-admin account as the manager: image.png

No edit button in self service interface: image.png

Web Interface configured: image.png

Security Role: image.png

+1

Hello Mark,

The thing is, your group currently has the Assigned membership type. The Edit button will not be displayed as long as the group is of the Assigned type because the security role doesn’t grant the rights to change the membership type (the Write ‘Membership Type’ Property permission is missing).

With your current security role, trustees are able to change the membership rules of a group only if it is already Rule-based. You can either add the above permission to the security role to allow trustees of the role to change the membership type, or change the membership type to Rule-based using another account that has sufficient permissions.

0

That did it. Thank you!

Related questions

0 votes
1 answer

Hi there, I've a business unit containing all shared mailboxes. In The Admin Console the filter is okay and the affected objects show the accounts: But when ... provide a list of all shared mailboxes (which are disabled aswell). Kind regards Constantin

asked May 28, 2021 by Constey (190 points)
0 votes
1 answer

Hello, I have 3 groups in my AD environment and want to show all the users that belong to each group. For example - Group 1 Group 2 Group 3 The existing report in the Adaxes ... -Usser D etc. Is there a way to create a report like this? Thank you in advance!

asked Nov 6, 2020 by sirslimjim (400 points)
0 votes
0 answers

When I run the above script after selecting groups the custom field "Group" is not showing one of the selected groups and not all of the groups are being reported ... 2 specific security groups are appearing and neither in one that was included in the search

asked Nov 18, 2021 by A_Pastor (20 points)
0 votes
1 answer

We would like to use the "Rule Based Groups" functionality that Adaxes has to create distribution groups where we have one group per manager and the members are the user ... so that the link doesn't break when changes happend to the managers AD object?

asked Oct 27, 2021 by odsven (1.8k points)
0 votes
1 answer

I am trying to create a business rule to send an email to the manager of the group when a member is added or removed from a rule-based group. I have created the business rule and it works for other groups but not for a rule-based group. Can this be done?

asked Jul 19, 2021 by mark.it.admin (1.8k points)
2,758 questions
2,492 answers
6,531 comments
1,470,886 users