In XLR 23.1.7 is a new permission 'Login'. This permission allows to define roles that are allowed to login to XLR.
As long as there is no role assigned to this persmission, all users are allowed to login to XLR. In this case the number of user that can be enabled (in the user maintenance dialog) is correct.
But if you add (at least) one role to the permission, the user maintenance dialog should only count the users of these roles. Nevertheless it still counts all enabled users.
This is not correct, because our license is restricted to a maximum number of user and should count only the number of users that are allowed to login and user XLR. We have some accounts that are just used as mailboxes and since it's not possible to send mails to inactive users, we have to enable those accounts although they never login to XLR.
Regards,
Roland
by: Roland F. | 7 months ago | Administration
Comments
The new login permission prevents the creation of new OIDC/ ldap users in Release that lack the login role. When this feature is in use the only users created in Release are those which have the login role. Users that lack the login role are not created in Release and they do not count against the licensed user limit.
We do not currently have any mechanism to detect changes in the OIDC users. For example if a one removed the login role for a user on the OIDC side, that had already been sync'd to Release, we do not detect the change and remove the ability for that user to login. We do plan to invest in a mechanism that would allow changes on the OIDC side to be reflected in Release but we do not yet have a time frame for this enhancement.
Users that are disabled are not counted against the license total.