Hi Forum,
The problem I am having (on a newly created Test Server / PWA instance) is when a named user (in AD) is logging into the PWA site and getting this message "Sorry this hasn't been shared with you". A few things which I have already checked:
- As per Microsoft best practice: Enterprise Pool (PSERP) and Groups added to AD and Synchronized with PWA
- AD Groups have been mapped to the PWA Groups (e.g. PortfolioViewers = PSPortfolioViewers (AD Group))
- Individual users have been added to their respective AD Groups and show up in Manage Users
Logging in as farm administrator works fine...
I have seen that if I go into "Manage Groups", select a Group and under the section "Users", if I select a user from "Available Users" and move to the right. Then that user can then access into PWA. This approach seems to defeat the purpose of adding people into the AD groups...
I'm just wondering if I have missed something in the PWA setup - which essentially gives every user in the Domain (or at least in the Main PS Enterprise Pool Group) a "basic level of access to the PWA site" and then the AD Group will work according
to the group mappings, etc...
Many Thanks for your guidance.
Regards
Mark