0 votes

I followed these instructions but still don't see the edit button unless I log in with my full adaxes administrator account.

https://www.adaxes.com/tutorials_AutomatingDailyTasks_AddUsersToGroupsByDepartment.htm#dynamicgroups

I granted the permission "Write Rule-Based Membership" to the Group Manager built in security role.

What am I missing?

by (1.5k points)

1 Answer

0 votes
by (1.9k points)

Hello Mark,

If you can see the Edit button when you log in with the administrator account, it means that there is an issue with the security role assigned to the user that doesn’t see the button. By default, the Group Manager security role is applied to the Owner (ManagedBy) well-known security principal and is assigned over All Objects. This means that the permissions granted by this role apply to the user who is specified in the managedBy attribute of each group.

Make sure that the user that you are logged in with is specified in the managedBy attribute of the group you are trying to edit. Should the issue persist, please, post the screenshot of the security role here or send it to support@adaxes.com. Make sure that the screenshot includes the assignments of the role.

0

Group that I am trying to change to rule-based with my non-admin account as the manager: image.png

No edit button in self service interface: image.png

Web Interface configured: image.png

Security Role: image.png

+1

Hello Mark,

The thing is, your group currently has the Assigned membership type. The Edit button will not be displayed as long as the group is of the Assigned type because the security role doesn’t grant the rights to change the membership type (the Write ‘Membership Type’ Property permission is missing).

With your current security role, trustees are able to change the membership rules of a group only if it is already Rule-based. You can either add the above permission to the security role to allow trustees of the role to change the membership type, or change the membership type to Rule-based using another account that has sufficient permissions.

0

That did it. Thank you!

Related questions

0 votes
1 answer

Hi there, I've a business unit containing all shared mailboxes. In The Admin Console the filter is okay and the affected objects show the accounts: But when ... provide a list of all shared mailboxes (which are disabled aswell). Kind regards Constantin

asked May 28 by Constey (120 points)
0 votes
1 answer

Hello, I have 3 groups in my AD environment and want to show all the users that belong to each group. For example - Group 1 Group 2 Group 3 The existing report in the Adaxes ... -Usser D etc. Is there a way to create a report like this? Thank you in advance!

asked Nov 6, 2020 by sirslimjim (330 points)
0 votes
1 answer

Our Help Desk currently 'mirrors' the group membership of a new user based on another existing user in our AD. I'd like to be able to automate this so that the initiator ... and 'paste' it on the new user being created. Any help on this would be appreciated!

asked Apr 21, 2020 by RayBilyk (120 points)
0 votes
0 answers

I am trying to find a way to create Groups based off an OU and a list of options (check boxes) within the portal For example: Select the Target OU to add groups ... 3 - Remote Administrators Option 3 - Remote Developers Option 4 - Readers Option 4 - Writers

asked Sep 11, 2020 by dknapp (100 points)
0 votes
1 answer

Hi All, I have been attempting to create a backup of our Adaxes setup so I can upgrade to 2020.1. When running the backup exe either from command line or gui I hit ... 2015/ReleaseNotes.htm but that suggests to add it in group policy which it is. Any ideas?

asked Jul 7, 2020 by antondubek (440 points)
2,491 questions
2,238 answers
6,010 comments
397,918 users