I have user directory 'A' from which users will come and access qlik streams, apps, and reports. Now I have a requirement that I should allow only a few users into my project stream and nothing else.
I know we can create a security rule that matches only that active directory domain and allow users to the destination.
But there is an issue if we do like that:
Active directory users:
My project users: 50
I want only that 50 users into my project stream and don't want other 50 users from the same Active directory.
Roles have been assigned for my project users in the active directory itself like "qliksense project A user" and I want this information to map in qlik qmc so that I can achieve my solution. I know we can assign roles/groups in qmc but I want that process to be automatic because we cannot do that manual thing for 10000 users.
I think you can ask your Active directory administrator to create a new group in AD and you can add those users which you want in Qliksense to be part of that group, then you can just use that group as filter in Qliksense LDAP to filter those users.
There are some articles which you can use as reference for creating LDAP filters ,but you can ask your AD admin to provide you exact filter to import these users, by this way you just need to update that group to import users in Qliksense.
Hi @Aaryan , Thanks for your response as I said earlier in the main post, we already have groups created and filtering that group only. And we are using AD security rule(Domain value) to filter out that AD group. The problem is :
Lets say, in future a different group from the same AD domain want to access to new Project stream and they should not access old project stream, we have to setup the security rule again (with same domain), then they automatically get access to old project as well because of the same domain.