my client is using Azure AD to give users Dynatrace SSO login permission but it only allows them to SSO when they go to DT they get an error as they have no access to view permission, someone later gives them view permission. What we are trying to achieve is as soon as they get SSO login they can also get viewing permission. Is it possible how they can configure it in Azure?
Solved! Go to Solution.
The configuration which you are addressing can not be controlled in Azure, if you look into the steps listed as listed in our document: Map Dynatrace Managed groups to LDAP groups.
You would need to assign Dynatrace permission to the Azure AD groups which are used to authenticate users to access the tenant. You can actually validate the Azure AD groups in Dynatrace under:
User Authentication > User Group to check the permission assigned.