You should be able to achieve this by having AD as secondary user store. On Mon, 8 Oct 2018 at 9:59 pm, Waqas Ali Razzaq <[email protected]> wrote:
> Hi Nuwan, > > Basically, the scenario is we have configured WSO2 API store SSO with > Azure AD. But Publisher and Carbon console are using default JDBC user > store. Now we want to define > API resource scope validation in Publisher. > > Is it mandatory to have Azure AD as the primary user store or we can > achieve this using Azure AD as secondary user store? > > Thanks & Kind regards, > *Waqas Ali Razzaq* > > > > > On Mon, Oct 8, 2018 at 5:23 PM Nuwan Dias <[email protected]> wrote: > >> Hi Hasitha, >> >> Have you connected Azure AD as a user store in the API Manager? >> >> If yes, this should just work OOTB. Do you see the user to role mapping >> when you try to view the users via the Management Console of API Manager? >> >> If no, can you explain the user login flow? Basically what you mean >> exactly by federation. >> >> Thanks, >> NuwanD. >> >> On Mon, Oct 8, 2018 at 8:31 PM Hasitha De Silva <[email protected]> >> wrote: >> >>> We have WSO2 API Manager federated setup with Azure AD. I can use the >>> implicit and code grant type to generate the access tokens. >>> >>> Now I want to use the WSO2 API Manager scope functionality to limit the >>> access on certain API resources. I have created the role in API manager and >>> added the scope on API publisher for the API resource. But when I generate >>> the access token using scope value, it doesn't return the token with >>> correct scope. But if I assign the local user to that role and generate the >>> access token it works fine. >>> >>> I wonder if WSO2 API manager support scope management for Federated >>> users. >>> >>> Any help would be appreciated. >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >> >> >> -- >> *Nuwan Dias* | Director | WSO2 Inc. >> (m) +94 777 775 729 | (e) [email protected] >> [image: Signature.jpg] >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> > -- *Nuwan Dias* | Director | WSO2 Inc. (m) +94 777 775 729 | (e) [email protected] [image: Signature.jpg]
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
