Ideally for LDAP mapped users one would wish to map remote user-groups to locally defined user-groups and assign their privileges on Datagerry.
This would then translate to something like below:
- Create an LDAP authentication server with it’s details.
- Create a user-group
- Define the LDAP matching parameter e.g. memberOf and then the LDAP name.
For the reference linking this would greatly help with the respective data entry of objects.
Since we can create an object and reference it with another, it would make sense to have another type e.g. “linkedReference” where a user could select the following:
- The parent reference
- The child reference
This would translate to “branches” of “organization”. So when organization_A is selected only branches which are attached to that organization can be referenced.
This makes sense for devices attached to customer branches a lot. Otherwise a user would need to select the parent reference which would be the organization and then the branch which would be a list of all customer branches.
When organizations on average more than 100 branches you can see this gets completely out of hand.
Does that help?