Hi Nuwan, Thanks for the help. I am able to log in and execute the scenario. let's hope with Azure AD it will work seamlessly. :)
Thanks & Kind regards, *Waqas Ali Razzaq* On Mon, Oct 8, 2018 at 8:04 PM Waqas Ali Razzaq <waqasaliraz...@gmail.com> wrote: > Hi Nuwan, > > Thanks for the quick reply. > > For testing the scenario, I have configured WSO2 IS embedded LDAP with > WSO2 APIM as a secondary user store. I can see the users and role from > LDAP. But I can't log in with that user credentials. e.g. my domain is > *azure.com > <http://azure.com> *and user is *read. *it looks like *AZURE.COM/read > <http://AZURE.COM/read> *as the username in the list. > > What is the format to use the secondary user credentials to log in on the > store/Publisher? I am trying to use azure.com/read as username. > > Thanks & Kind regards, > *Waqas Ali Razzaq* > > > > > On Mon, Oct 8, 2018 at 7:17 PM Nuwan Dias <nuw...@wso2.com> wrote: > >> You should be able to achieve this by having AD as secondary user store. >> >> On Mon, 8 Oct 2018 at 9:59 pm, Waqas Ali Razzaq <waqasaliraz...@gmail.com> >> wrote: >> >>> Hi Nuwan, >>> >>> Basically, the scenario is we have configured WSO2 API store SSO with >>> Azure AD. But Publisher and Carbon console are using default JDBC user >>> store. Now we want to define >>> API resource scope validation in Publisher. >>> >>> Is it mandatory to have Azure AD as the primary user store or we can >>> achieve this using Azure AD as secondary user store? >>> >>> Thanks & Kind regards, >>> *Waqas Ali Razzaq* >>> >>> >>> >>> >>> On Mon, Oct 8, 2018 at 5:23 PM Nuwan Dias <nuw...@wso2.com> wrote: >>> >>>> Hi Hasitha, >>>> >>>> Have you connected Azure AD as a user store in the API Manager? >>>> >>>> If yes, this should just work OOTB. Do you see the user to role mapping >>>> when you try to view the users via the Management Console of API Manager? >>>> >>>> If no, can you explain the user login flow? Basically what you mean >>>> exactly by federation. >>>> >>>> Thanks, >>>> NuwanD. >>>> >>>> On Mon, Oct 8, 2018 at 8:31 PM Hasitha De Silva <hastef....@gmail.com> >>>> wrote: >>>> >>>>> We have WSO2 API Manager federated setup with Azure AD. I can use the >>>>> implicit and code grant type to generate the access tokens. >>>>> >>>>> Now I want to use the WSO2 API Manager scope functionality to limit >>>>> the access on certain API resources. I have created the role in API >>>>> manager >>>>> and added the scope on API publisher for the API resource. But when I >>>>> generate the access token using scope value, it doesn't return the token >>>>> with correct scope. But if I assign the local user to that role and >>>>> generate the access token it works fine. >>>>> >>>>> I wonder if WSO2 API manager support scope management for Federated >>>>> users. >>>>> >>>>> Any help would be appreciated. >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> Dev@wso2.org >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>> >>>> >>>> -- >>>> *Nuwan Dias* | Director | WSO2 Inc. >>>> (m) +94 777 775 729 | (e) nuw...@wso2.com >>>> [image: Signature.jpg] >>>> _______________________________________________ >>>> Dev mailing list >>>> Dev@wso2.org >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>> -- >> *Nuwan Dias* | Director | WSO2 Inc. >> (m) +94 777 775 729 | (e) nuw...@wso2.com >> [image: Signature.jpg] >> >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev