-
Incident report
-
Resolution: Duplicate
-
Trivial
-
None
-
6.4.12
-
None
-
None
-
Zabbix in container (ubuntu) with postgres
Steps to reproduce:
- SSO with Azure AD / SAML (see attached screenshots)
- The roles (builtin "Super Admin role" and a custom role with restricted permissions of User type "Super admin") are mapped to two AD groups in SAML config
- User is member of both AD groups
- User signs into Zabbix
Result:
User gets custom role assigned, which has restricted permissions
Expected:
User gets role "Super admin role" assigned
-> Based on the docs: If a user matches several Zabbix user roles, the user will get the highest permission level among them
We use the User type "Super admin" to give the members access to all host groups, even newly created ones.
- duplicates
-
ZBX-23783 Inconsistent role mapping with SAML
-
- Elaborating
-