Cisco Cisco Intelligent Automation for Cloud 4.3.1 Installation Guide
51
Optional Tasks
Creating a Security Group for Each User Role on the LDAP Server
b.
Click Options.
—
Enter 24 in the Refresh Period (Hours) field.
—
Leave all check boxes unchecked.
14.
Click Update to add the same information as did in Step 1, then click Update again.
Creating a Security Group for Each User Role on the LDAP Server
In your directory, create one security group for each user role. The name of each group must exactly match the name of
the user role:
the user role:
Cloud Provider Technical Administrator
Cloud Provider Business Administrator
Tenant Technical Administrator
Tenant Business Administrator
Organization Technical Administrator
Virtual and Physical Server Owner
Virtual Server Owner
Solutions Team
Form Extender
For instructions on creating security groups on your directory server, see the documentation that came with your directory
server software.
server software.
Note:
Cisco Intelligent Automation for Cloud supports an individual’s membership to just a single organizational unit or
membership, not multiple organizations.
Adding the nsAPI User to the Cloud Administration Group
The nsAPI user account that you created on the LDAP server is used to connect Cisco Prime Service Catalog to Cisco
Process Orchestrator. For the nsAPI user account to function properly, you must add it to the Cloud Provider Technical
Administrator user group that you created in the directory. For instructions on adding a user to a user role group on your
directory server, see the documentation that came with your directory server software.
Process Orchestrator. For the nsAPI user account to function properly, you must add it to the Cloud Provider Technical
Administrator user group that you created in the directory. For instructions on adding a user to a user role group on your
directory server, see the documentation that came with your directory server software.
Configuring User Role Mappings
To map user roles, you specify the location in the directory that contains the six security groups you created for each role.
1.
In Service Catalog, choose Administration from the module drop-down list, then click Directories.
2.
On the Directory Integration page, click Mappings in the menu on the right.
3.
In the Mappings pane, click Edit beside the mapping name you created when you configured mappings (see
4.
Expand Optional Person Data Mappings at the bottom of the page.