Mapping AD security groups to roles

This section shows you how to map Active Directory (AD) security groups to Collibra Data Quality & Observability user roles.

When Active Directory or LDAP is configured, the available groups are based on the settings under the Connections tab of the AD Security page.

Steps

  1. Sign in to Collibra Data Quality & Observability and click Cogwheel icon in the left navigation pane.

  2. Click Admin Console.
  3. Click User Management and then click AD Security.
    4. The AD and LDAP Security Settings page opens.
  4. Click the Connections tab and ensure that Active Directory is selected as the Connection Type.
  5. Click the Mappings tab to display the table of roles and AD groups mapped to them.
  6. To map a group to an existing role, find the row containing the role to which you want to map one or multiple AD groups, then click the in the Action column.
    7. The edit role mapping dialog appears, where you can map AD groups to the selected role.
  7. Map AD groups to the role by moving them from the Not included box to the Included box. To do this, select the AD group(s) you wish to map to the role, then click the right arrow. You can also filter the AD group in the search fields.

    Note To remove a AD group to role mapping, click the left arrow to move the role(s) you select from the Included column back to the Not included column.

    image of edit connection modal with mapped roles

  8. Click Submit.

After successfully mapping an AD group to a role, sign out of Collibra DQ and sign back in as a Domain user.

Note You must restart the Collibra DQ web application by running ./owlmanage.sh restart_owlweb for Standalone or restart the Web Pod for Cloud Native.

When signing into Collibra Data Quality & Observability, append the domain to the end of the username.