Mediafly
MediaflyKnowledge BaseMediafly Admin SettingsAdmin Guide: Group and User Management
FAQs Knowledge Base
Mediafly Admin Settings Admin Guide: Workspace Management Admin Guide: Group and User Management Admin Guide: Content Management Engagement Content Getting Started with Mediafly Working with Content and Workspaces Sharing, Personalization, Preferences and Integrations Digital Sales Rooms Content Troubleshooting Apps and Requirements Value Getting Started with Value Using the Design Studio Items Library Output Reports Marketing Tools Value Integrations Additional Value Resources Advanced Insights Getting Started with Advanced Insights Setup and Configuration Advanced Insights Integrations User Management / Access and Visibility Value Data Analytics Salesforce Specific Hierarchy Report Management Creating and Editing Reports Reporting Types (Visualizations) Dashboards and Cards Creating and Editing Dashboards Out of the Box Dashboards Creating and Editing Cards Goals Machine Learning Available Machine Learning Models Administration: Machine Learning Activity by Day Energy Score Content Properties and Types Inspection Coach Settings: Onboarding Settings: Basics Call Card Overview Settings: Smart Alerts Coach Integrations Revenue Intelligence Opportunities / Pipeline Classic Insights Admin Guide to Insights & Reporting Product Updates Resources Genius Drive
Related Articles
Properties
Tags imported-from-zendesk
Table of Contents

Just-in-Time (JIT) Group Assignments

Just-in-Time (JIT) Group Assignments simplify user group management in Mediafly by automatically assigning users to predefined groups upon authentication through Single Sign-On (SSO). This eliminates the need for admins to manually add users to groups while ensuring appropriate access control.

  • Reduces admin overhead by automating user group assignments.

  • Ensures consistent access control based on user attributes.

  • Works in real-time when users log in via SSO.

  • Supports multiple identity providers (Okta, Microsoft Entra, etc.).

How JIT Group Assignments Work

When a user logs in via SSO:

  1. Mediafly SSO verifies and authenticates the user as usual.

  2. Mediafly checks if JIT Group Assignments are enabled.

  3. Mediafly searches for the relevant attribute where the name is "group" in the SAML assertion.

  4. Mediafly looks for matching groups:

    • If a group named "Sales" exists in Mediafly and the user is not a member, they will be added.

    • If a group named "Marketing" exists in Mediafly and the user is not a member, they will be added.

Note: This feature does not dynamically create groups in Mediafly. Groups must already exist before assigning users via JIT.

Configuring JIT Groups

  1. Ensure that groups are already created in Mediafly. Check out our article on creating groups to learn more. 

  2. Configure your identity provider (IdP) to send group attributes in the SAML assertion.
    ▪ If you're using Microsoft Entra, use this Microsoft Guide.
    ▪ If you're using Okta, use this Okta Guide. 

  3. Verify that the attribute name used for groups in the SAML assertion matches the Mediafly group names exactly.

 

 

Is this article helpful?
0 0 0
Leave a Comment
 
Attach a file
Powered by: UseResponse - Knowledge Management Software