Add Role Mapping Dialog

In NetWitness each user role has its own set of permissions. You can map one or more NetWitness roles to an external group, which grants the group the same set of permissions that each role has.

What do you want to do?

Role I want to ... Show me how
Admin Map a role to an external group (Optional) Map User Roles to External Groups
Admin Search for an external group Search for External Groups

Quick Look

To access this dialog, go to netwitness_adminicon_25x22.png (Admin) > Security, click the External Group Mapping tab. In the column on the left, click either Active Directory, PAM, or SSO to show groups for the selected type and in the toolbar, click netwitness_icon_add.png. The Add Role Mapping dialog for the external authentication method that you set up is displayed.

  • Add Role Mapping dialog when Active Directory is selected.

AddRoleMap_Ad1.png

  • Add Role Mapping dialog when PAM is selected.

AddRoleMap_Pam1.png

  • Add Role Mapping dialog when SSO is selected.

124_Saml_Token_UserGroup_Refr.png

Note: The Add Role Mapping and the Edit Role Mapping dialogs are nearly identical. The only difference is that you cannot search in the Edit Role Mapping dialog.

The Add Role Mapping tab includes the following sections.

1 Group Mapping
2 Mapped Roles

Group Mapping

The following table describes the Group Mapping section features.

Feature Description
Domain Displayed if you set up Active Directory for external user authentication. The domain name of the external AD group to which roles are mapped.
External Group Name Displayed if you set up Active Directory for external user authentication. The external group to which roles are mapped.
PAM Group Name Displayed if you configured PAM for external user authentication. The name of the external group to which roles are mapped.
SAML Group Name Displayed if you configured SSO for external user authentication. The name of the external group to which roles are mapped. The SAML Group Name should be the same as the group name in ADFS and match the format and attribute value that is being sent in the SAML token from ADFS.
Search Displays a search dialog in which you can search for external groups using domain name and host. Search is not available in the Edit Role Mapping dialog.

Mapped Roles

The following table describes the Mapped Roles section features.

Feature Description
netwitness_add_icon.png Opens the Add Role dialog, in which configured NetWitness user roles to add are listed.
netwitness_delete_icon.png Removes selected roles from the Mapped Roles grid.
Name Displays the name of the NetWitness user role.
Permissions Displays the permissions associated with the NetWitness user role.
Cancel Cancels the new group mapping or changed group mapping and closes the dialog.
Save Saves the new group mapping or changed group mapping and closes the dialog.