Hi, hoping any community members might be able to help me out here! I’ve configured Camunda Cockpit to use LDAP authentication, but it doesn’t seem to be recognizing group authorizations.
- I can log in using SSO
- My user profile info & active directory groups are being populated from the LDAP server
I set up a new active directory group called “cockpit-users” and added myself. When I go to the “cockpit-users” group page in Camunda Admin I can see that I’m a member. If I go to my user page and look at my groups, I can see “cockpit-users” in the list. So far so good.
Then I set up the following authorizations in Camunda Admin:
- the “cockpit-users” group has access to Cockpit
- my specific user id has access to Admin
When I enable authorization to test it out and go the welcome page, I only see the admin section:
So it’s as if my group membership is being ignored. Has anyone seen this before? Any suggestions on how to debug or what the problem might be?
Using spring-boot with Camunda 7.10. MySql Db.