In this article we will explain the role of some useful permissions groups which can be used to give bulk generic permissions to Atlas workspaces - for example giving all internal users read permissions to a specific workspace.
Everyone except External Users
This is a built-in system group provided by Microsoft, which automatically includes all internal users but no external users. The membership of this group cannot be manually updated.
All External Users
This is the group that gets configured as a DYNAMIC Active Directory group to catch all users with an external user account. We use this group to give all external users read only access to the App Catalogue and to the Atlas Configuration site collection.
These users are limited as follows:
- They will get a different ATLAS HOME LOGO link experience (no link or a different link)
- They will not be able to see the My Atlas/My Preferences features
- They will not be able to see the Footer feedback button.
Atlas Trusted External Users
This is an AD group where users are added as members manually if you trust them and want to give them an experience closer to that of internal users. These group members will not be limited in the same way as the above “All External Users”, but there are still a couple of caveats:
- They will get a different ATLAS HOME LOGO link experience (no link or a different link)
- They will not be able to see the Footer feedback button.
Comments
0 comments
Please sign in to leave a comment.