Identifying Federated Authentication groups

If there is no matching FST group, when you add federated authentication groups to ACLs or Security groups, you must create an FST group with the same name as the federated authentication group you need to identify. These groups must be added to the corresponding ACLs for the InfoPrint Manager objects and operations.

    Important:
  • When you log in using federated authentication, InfoPrint Manager validates the user roles to control access to different resources and functionalities based on the roles specified in the user identification token or in the User information endpoint response. To access the Web Management Interface, the system verifies whether the user ID belongs to the acl_admin group. To grant permissions to desired users, they must be members of the acl_admin group defined on the website of your chosen IdP.