CONFIG AUTH OIDC GROUP LIST

Level

user

History

Appears in 5.0.0

Description

List OIDC user groups.

Usage

[DomainName=<domain_name|any>]: When the argument is given with a value other than 'any', it returns the groups for this domain name (default: any).
[UseClone=<0|1>]: Show clone file (with pending modifications) or real configuration file (default: 0).
[Claim=<all|groups|roles>]:
- all: list all groups
- roles: list groups linked to the OIDC 'roles' claim
- groups: list groups linked to the OIDC 'groups' claim
(default: all).

Format

section_line

Returns

DomainName=<domain_name> UID=<unique_identifier> Name=<group_name> [Description=<group_description>]

Example

CONFIG AUTH OIDC GROUP LIST DomaineName="stormshield.onmicrosoft.com" Claim=groups
[Result]
DomainName=stormshield.onmicrosoft.com Name="Admin Full" UID=ef0a4fe8-2001-4b32-9b48-d301e3ee5e7d Description="Administrators with full privileges" claim="groups"

CONFIG AUTH OIDC GROUP LIST DomaineName="stormshield.onmicrosoft.com" Claim=roles
[Result]
DomainName=stormshield.onmicrosoft.com Name="VPNSSL users" UID="SNS.VPNSSL" Description="Users with VPNSSL access, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Sponsors" UID="SNS.Sponsor" Description="Sponsor users, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Administrators" UID="SNS.Config.All.Write" Description="User with administrator credentials, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Auditors" UID="SNS.Config.All.Read" Description="User allowed to read configuration, granted via claims" claim="roles"

CONFIG AUTH OIDC GROUP LIST DomaineName="stormshield.onmicrosoft.com" Claim=all<NL>
[Result]
DomainName=stormshield.onmicrosoft.com Name="Admin Full" UID=ef0a4fe8-2001-4b32-9b48-d301e3ee5e7d Description="Administrators with full privileges" claim="groups"
DomainName=stormshield.onmicrosoft.com Name="VPNSSL users" UID="SNS.VPNSSL" Description="Users with VPNSSL access, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Sponsors" UID="SNS.Sponsor" Description="Sponsor users, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Administrators" UID="SNS.Config.All.Write" Description="User with administrator credentials, granted via OIDC claims" claim="roles"
DomainName=stormshield.onmicrosoft.com Name="Auditors" UID="SNS.Config.All.Read" Description="User allowed to read configuration, granted via OIDC claims" claim="roles"