Create a Service: Browsing for groups shows no groups

Document ID : KB000010020
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

When selecting the option "Create Service", unable to add an Owner or Administrator when using the Admin Rule "Users who are members of a group".  Selecting browse shows no groups.  See below:

group_no_results.PNG

How do you make the groups visible?

Instructions:

In Identity Manager, first verify that you have at least one group by clicking Groups>View Groups and searching:

groupview.png

Next, to create a service, click on Services > Manage Services > Create Service:

service.png

Give the service a name, tag and click the enabled checkbox.  Click on the Administrators tab:

administrators.png

Click the Add button to add an administrator.  

admin_add.PNG

Under "Which users are the administrators of this Service?" select "Users who are members of group" as shown below:

admin_filter.PNG

Click the Browse button to search for a group.  

group_no_results.PNG

Notice there are no groups listed here.  The reason the groups are not showing is due to the Service Manager role not having the proper scoping to administer groups.  To correct this, click Roles and Tasks>Admin Roles>Modify Admin Roles.  Select Service Manager and click the Select button.

svc_mgr_role.PNG

Notice there is no mention of Groups in either the System Manager or Service Manager section.  We need to add group scoping to both.  To do this, click the pencil next to the member rule you want to edit.  At the bottom of this screen, select the drop down for the new scoping rule and select Group.  Finally select All groups and click submit:

group_added.PNG

Repeat this for the other member rule.  And now you should see group (all) added for both rules like this:

showing_group_added.PNG

Click submit and repeat the steps to Create a Service.  You should now see this when browsing for a group:

service_group.PNG