We just migrated from the ITSM to the ESM platform yesterday morning and the migration went very smoothly. Prior to the migration, we were utilizing AD security groups and rules within OneLogin for provisioning to automatically add users to a correct role. Now with the EMS, that does not seem possible. I do realize that this is mentioned in the documentation that:
Roles are defined and managed at the service provider level. The default role for each service provider is Requester. A service provider administrator can change the default role if needed. Anyone with a Requester role at the Organization level can access any service provider’s portal.
For those that had a similar setup before, how are you now provisioning users into defined roles at the Provider level? I attempted (out of doing it just for laughs) to create a new Provider, a new Role name within that provider, and a new security group in AD just to see if they would see each other and unfortunately OneLogin does not see the newly created role (although it still seems to see the previous roles from prior to migration even though they are now in the IT Provider).
Would love to get some feedback of how others are dealing with this change in the ESM system and from SWSD staff on if this functionality is of being able to use AD security groups is something that will be re-introduced to make managing roles easier.
Thanks!
