Before you start
Make sure you have:- Administrator access in Rulebase
- Administrator access to your identity provider
- The identity provider groups you want to map to Rulebase roles
- A list of the Rulebase roles each group should receive
Open the Admin Portal
The Admin Portal is available from your Rulebase settings page.- Open your Rulebase members settings:
- Click Admin portal.
- Choose the SSO or Directory Sync setup flow for your organization.
Choose a role assignment method
If your organization uses Directory Sync, use Directory Sync group role assignment. Directory Sync keeps group membership changes up to date without waiting for users to sign in again. If your organization only uses SSO, use SSO group role assignment. SSO role changes are applied the next time a user signs in with SSO. Avoid configuring both methods for the same role workflow unless your Rulebase team has confirmed the intended setup.Assign roles with Directory Sync
Directory Sync role assignment is available for SCIM-based directories and Google Workspace directories.- In your identity provider, create or confirm the groups you want to use for Rulebase access.
- Push or sync those groups to Rulebase through your directory setup.
- In the Rulebase Admin Portal, continue the Directory Sync setup.
- When prompted, map each identity provider group to the appropriate Rulebase role.
- Save the setup.
Assign roles with SSO
Use SSO role assignment when your organization does not use Directory Sync for Rulebase.- In your identity provider, create or confirm the groups you want to use for Rulebase access.
- Configure your SSO application to include group membership data in the SAML or OIDC response.
- In the Rulebase Admin Portal, continue the SSO setup.
- When prompted, map each identity provider group to the appropriate Rulebase role.
- Save the setup.
- Ask affected users to sign out and sign back in with SSO.