Allowing AD and LDAP users to see teams and local users

There's an optional setting in Trust Protection Platform that permits external identities to see local identities. This means non-admin LDAP users will be able to browse for local groups when managing contacts, identity custom fields, and when managing permissions across the product.

If you have multiple external identity providers, you don't have to enable this option for all providers. When you add identity providers to the access list, just pick the ones you want to be able to see the local identities.

To enable external users to see local identities

1. In the Policy Tree, open the Identity tree, and click on the Local Identity node.
2. On the Provider tab, click the Options sub-tab.
3. In the Permissions panel, click the configure button.

4. In the modal window, click the provider(s) that you want to have access to the local identities.

   TIP  Use CTRL + click or SHIFT + click to select multiple identities.

5. Click Select.
6. Click Save.