Hi,
Does LeanIX have a concept of a guest or unregistered user? Specifically, can I create a Portal that is accessible to unenrolled individuals?
I have read about transient users that are registered in real-time. Right now, that appears to be the closest solution.
Thoughts?
+1LeanIX does not have a guest permission which enables you to allow a user to login temporarily. We have a standard viewer role which enables a user to view only data and artifacts in a workspace. The portal enables all users of a company domain regardless of being apart of LeanIX EAM platform itself, to review data there which has been curated.
Hi,
I have added also Transient users to Portal configuration. But when a person that is not part of the AD group (Viewer or Member) want to access the Portal they still get error like.
Your administrator has configured the application Leanix, to block users unless they are specifically granted ‘assigned’ access to application. The signed in user xx.xx.xx is blocked because they are not a direct member of a group with access.
So far we have these groups defined in AD
In the instructions it says
In your IdP, create a group for transient users if it doesn't already exist. Don't assign any permission roles (Admin, Viewer, or Member) to this group. If you're using Microsoft Entra ID, select the predefined value Users.
Does this mean we need to create another group and all employees inside and select predefined value Users ?
Hi,
I’d like to provide access to our LeanIX application portal for all our colleagues in the company. Our authentification runs via EntraID, authorization is managed manually in LeanIX.
Is there any best practise on how to grant access to the application portal with our setup of authentification/authorizartion? I want to avoid to manually add/remove new/retired users in LeanIX. My idea would be to create any kind of automation for accessing users to LeanIX.
I’d be happy about your ideas, experiences, advice.
Best regards, Arthur
PS: I know that users need at least a viewer-role in order to access the application portal
+1Hi,
I have added also Transient users to Portal configuration. But when a person that is not part of the AD group (Viewer or Member) want to access the Portal they still get error like.
Your administrator has configured the application Leanix, to block users unless they are specifically granted ‘assigned’ access to application. The signed in user xx.xx.xx is blocked because they are not a direct member of a group with access.
So far we have these groups defined in AD
In the instructions it says
In your IdP, create a group for transient users if it doesn't already exist. Don't assign any permission roles (Admin, Viewer, or Member) to this group. If you're using Microsoft Entra ID, select the predefined value Users.
Does this mean we need to create another group and all employees inside and select predefined value Users ?
Hi,
I am not sure of your organization however I would reach out to your customer success manager and or submit a customer support ticket via SAP4ME.
+2At our company we gave everyone Visitor (read-only) access (which means they all have Portal access).
Thanks for your replies.
I’ve recently talked to some guys from LeanIX about this topic and their advice was to grant acces via Viewer-role as long as you don’t have confidential information/apps in your inventory. Additionally, you could also restrict user rights for viewers via user based permission, e.g. for not showing application costs to viewers.
This is the easiest way to provide access for all colleagues company-wide.
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.