Does changing a user's groups in SAML/LDAP/etc affect their Looker user?

sam8 · July 7, 2021, 8:13pm

Knowledge Drop

Last tested: Jan 8, 2018

Yes. Each time a user logs in with SAML/LDAP/OpenID, their role gets reconstructed based on the SAML/LDAP/OpenID groups they are in.

So, if you have group to role mapping set up in Looker, then you can change Looker permissions solely by editing the user’s groups in the external authentication system.

Topic		Replies	Views
Does changing a user's groups in SAML/LDAP affect their Looker user? Technical Tips & Tricks authentication	0	13	April 5, 2021
Can we map [SAML/LDAP/OpenID] groups to Looker groups? Technical Tips & Tricks authentication	0	16	April 5, 2021
Can you manually assign a role to a user that is not determined by the [SAML/LDAP] Group to Role mapping? Technical Tips & Tricks authentication	1	15	November 17, 2021

Does changing a user's groups in SAML/LDAP/etc affect their Looker user?

AI Suggested topics