In Qlik Sense 3.1 I have rules created such that if a user is a member of one Active Directory security group, they are granted a login access token, if they are a member of another group, they are granted a user access token. What happens if they're a member of both groups?
Do you have any document/references how to create these rules (allocating tokens, etc) for different group of users?
I need to create similar rules and I did not find a straightforward information about it.
It's not very clear for me if I can wildcards options for user names, create user Roles or Custom User's Properties automatically, apply allocations based on these Roles, use a mix of AD and UDC accounts, etc.
I can comment on the first part of your question which is yes, it's probably easier than you think to allocate tokens for different groups. Assuming you want to use Active Directory security groups as I am, first thing you want to ensure is working is your User Directory Connector sync. If it is, then the QMC will be 'aware' of your existing security groups. Then
go to your QMC
Click License and tokens
Click User access rules on the right side
Click Create new on the bottom
Give it a Name, Description, then in the Basic section, in order select User, Group=value and paste in the name of your AD Security Group in the last field
If there are enough available tokens, this rule will ensure users in that group are granted a User access token.
You can follow similar steps for creating a Login access rules. The only real difference is you need to designate a number of tokens from which users can draw down.