Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
546
Views
0
Helpful
3
Replies

RBAC - SSO and Scopes

pawzg
Level 1
Level 1

‎12-03-2025 09:28 AM

Hello,

I am using SD-WAN Manager 20.15.3.1. I have configured SSO to access it via GUI. Users belonging to different groups are associated with a proper role after successful logon.  I would like to use scope mechanism now however I have no idea how to link ad group or role with a scope prepared by me. Does anyone know how to proceed? Thanks!

Labels:
0 Helpful
3 Replies 3

Cristian Matei
VIP Alumni
VIP Alumni

‎12-09-2025 01:00 PM

Hi,

    Check this document and look for "Information About Assigning Roles Locally to a User Defined by an Identity Provider. It works with both getting the role from IdP as well as defining the role locally.

https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/system-interface/ios-xe-17/systems-interfaces-book-xe-sdwan/m-rbac-17-13.html

Thanks,

Cristian.  

 

 

 

0 Helpful

pawzg
Level 1
Level 1
In response to Cristian Matei

‎12-09-2025 11:50 PM

Hello, 
Thanks for feedback but this not solves the problem. Roles assign process for user groups works perfectly fine for me and I gets the roles from IdP. However I have a problem with assigning Scopes to the user groups. It may be the CSCwo62038 bug, but I am not sure.

0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni
In response to pawzg

‎12-13-2025 12:13 PM

Hi,

  You don't know how to perform the configuration or configuration is done right however it doesn't get enforced upon user authentication? Did you add the user as a remote user and attached the configured scope?

Thanks,

Cristian.

Thanks,

Cristian.

0 Helpful
Customers Also Viewed These Support Documents