Hi All,

For a new QlikCloud project we have setup Mendix as an idp. The basic setup is working and the login works as planned/designed. But... for security (manage space access) we want to use user roles (com.mendix.user.roles) as groups that we find in the claim.

The mapping seems to work and if we look in the https://TENANT.eu.qlikcloud.com/api/v1/diagnose-claims the group looks mapped as we like. However, when I try to set access to a space with these groups Qlik can't find them. In the claimsFromIdp we can find the com.mendix.user.roles with the value 'Klant_Administrator' and after mapping this is also seen as groups in the mappedClaims section.

Does any of you have an idea how to solve this?

A part of the diagnose claims (https://TENANT.eu.qlikcloud.com/api/v1/diagnose-claims)

The idp settings look like this: