Prototype Merge Policy (baja-UserPrototypeMergePolicy)
As of Niagara 4.12, you can optionally configure SAML, LDAP and Kerberos authentication schemes to merge user prototypes that match a user's prototype attributes, instead of just using a single prototype. If you enable the Prototype Merge Policy, user prototypes will be merged according to the policy’s configuration when you create remote users upon login. You benefit from this feature, for example, when an organization has multiple user groups for each building and it is not feasible to create additional groups for each possible combination.
For the KerberosScheme, you access this view by expanding and double-clicking Prototype Merge Policy.
For the LDAPScheme, you access this view by expanding and double-clicking Prototype Merge Policy.
For the SAMLAuthenticationScheme, you access this view by expanding and double-clicking Prototype Merge Policy.
| Property | Value | Description |
|---|---|---|
| Enabled | true, false (default) | Determines whether or not user prototypes are merged according to your policy configuration. |
| Roles Merge Mode | drop-down list | Provides two modes:
|
| Expiration Merge Mode | drop-down list | Provides two modes:
|
| Allow Concurrent Sessions Merge Mode | drop-down list | Provides two modes:
|
| Auto Logoff Settings Merge Mode | drop-down list | Provides two modes:
|