Hi all, In our syncope application we have a lot of OrgUnits (Realms) and we need to have a possibility to assign "OrgUnit Admin" role to some users. As I understand I need to create "OrgUnit Admin" role for every OrgUnit and for every role assign appropriate realm. BUT this doesn't fit us as it lead to a big amount of roles in our system. Is there any possibility to create one role "OrgUnit Admin" with some permissions and assign it to user, so that all permissions from this role will be applied only to OrgUnit to which belong the user? Can “Dynamic USER Membership Conditions” or “Dynamic Realms” help with this?
Best Regards, Alexander Tsvetkov
