Hi Nuwan, Thanks for the quick reply.
For testing the scenario, I have configured WSO2 IS embedded LDAP with WSO2 APIM as a secondary user store. I can see the users and role from LDAP. But I can't log in with that user credentials. e.g. my domain is *azure.com <http://azure.com> *and user is *read. *it looks like *AZURE.COM/read <http://AZURE.COM/read> *as the username in the list. What is the format to use the secondary user credentials to log in on the store/Publisher? I am trying to use azure.com/read as username. Thanks & Kind regards, *Waqas Ali Razzaq* On Mon, Oct 8, 2018 at 7:17 PM Nuwan Dias <nuw...@wso2.com> wrote: > You should be able to achieve this by having AD as secondary user store. > > On Mon, 8 Oct 2018 at 9:59 pm, Waqas Ali Razzaq <waqasaliraz...@gmail.com> > wrote: > >> Hi Nuwan, >> >> Basically, the scenario is we have configured WSO2 API store SSO with >> Azure AD. But Publisher and Carbon console are using default JDBC user >> store. Now we want to define >> API resource scope validation in Publisher. >> >> Is it mandatory to have Azure AD as the primary user store or we can >> achieve this using Azure AD as secondary user store? >> >> Thanks & Kind regards, >> *Waqas Ali Razzaq* >> >> >> >> >> On Mon, Oct 8, 2018 at 5:23 PM Nuwan Dias <nuw...@wso2.com> wrote: >> >>> Hi Hasitha, >>> >>> Have you connected Azure AD as a user store in the API Manager? >>> >>> If yes, this should just work OOTB. Do you see the user to role mapping >>> when you try to view the users via the Management Console of API Manager? >>> >>> If no, can you explain the user login flow? Basically what you mean >>> exactly by federation. >>> >>> Thanks, >>> NuwanD. >>> >>> On Mon, Oct 8, 2018 at 8:31 PM Hasitha De Silva <hastef....@gmail.com> >>> wrote: >>> >>>> We have WSO2 API Manager federated setup with Azure AD. I can use the >>>> implicit and code grant type to generate the access tokens. >>>> >>>> Now I want to use the WSO2 API Manager scope functionality to limit the >>>> access on certain API resources. I have created the role in API manager and >>>> added the scope on API publisher for the API resource. But when I generate >>>> the access token using scope value, it doesn't return the token with >>>> correct scope. But if I assign the local user to that role and generate the >>>> access token it works fine. >>>> >>>> I wonder if WSO2 API manager support scope management for Federated >>>> users. >>>> >>>> Any help would be appreciated. >>>> _______________________________________________ >>>> Dev mailing list >>>> Dev@wso2.org >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>> >>> >>> -- >>> *Nuwan Dias* | Director | WSO2 Inc. >>> (m) +94 777 775 729 | (e) nuw...@wso2.com >>> [image: Signature.jpg] >>> _______________________________________________ >>> Dev mailing list >>> Dev@wso2.org >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >> -- > *Nuwan Dias* | Director | WSO2 Inc. > (m) +94 777 775 729 | (e) nuw...@wso2.com > [image: Signature.jpg] >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
