What is the correct workflow to delete a portal group that is associated with SAML groups

ChenChen4

I saw the following note from Esri's documentation:

If the group is linked to an Active Directory, LDAP, or SAML group from an organization-specific identity store, only the group item is deleted from the portal. The Active Directory, LDAP, or SAML group is unaffected because it is managed by the identity store.

If the group is deleted directly from the identity store, the group item is retained in the portal. All group members are removed from the item, except the group owner.

My question: what is the correct workflow to delete a portal group that is linked to the SAML group? Does this note mean deleting the group form portal is not enough or not the right way?

JakeSkinner

Hi @ChenChen4,

The documentation is stating if you delete the Portal Group, it will not delete the group from Active Directory/LDAP/SAML. If you delete the Active Directory/LDAP/SAML, it will not delete the Portal group, it will just remove all portal members, except the group owner.

If you are looking to remove the Active Directory/LDAP/SAML group from Portal, deleting it from within Portal will be efficient enough.

View solution in original post

JakeSkinner

Hi @ChenChen4,

The documentation is stating if you delete the Portal Group, it will not delete the group from Active Directory/LDAP/SAML. If you delete the Active Directory/LDAP/SAML, it will not delete the Portal group, it will just remove all portal members, except the group owner.

If you are looking to remove the Active Directory/LDAP/SAML group from Portal, deleting it from within Portal will be efficient enough.

ChenChen4

Thanks.