Hey all,
I have configured OpenID authentication to Azure AD using the guides for both the CMS and Commerce Manager on a test instance of Episerver. I have the user logging in to both of these and they are assigned to WebEditors and WebAdmins on the client AD instance (I have checked the claims coming back).
Everything is working for the user to be editor and admin in the CMS but on Commerce Manager I'm only seeing the tabs Catalog Management, Order Management and Marketing. I've checked the web.config and the roles are set up as follows
<virtualRoles addClaims="true"><providers><add name="Administrators" type="EPiServer.Security.WindowsAdministratorsRole, EPiServer.Framework" /><add name="Everyone" type="EPiServer.Security.EveryoneRole, EPiServer.Framework" /><add name="Authenticated" type="EPiServer.Security.AuthenticatedRole, EPiServer.Framework" /><add name="Anonymous" type="EPiServer.Security.AnonymousRole, EPiServer.Framework" /><add name="CmsAdmins" type="EPiServer.Security.MappedRole, EPiServer.Framework" roles="WebAdmins, Administrators" mode="Any" /><add name="CmsEditors" type="EPiServer.Security.MappedRole, EPiServer.Framework" roles="WebEditors" mode="Any" /><add name="Creator" type="EPiServer.Security.CreatorRole, EPiServer" /><add name="CommerceAdmins" type="EPiServer.Security.MappedRole, EPiServer.Framework" roles="WebAdmins, Administrators" mode="Any" /></providers></virtualRoles>
Which should me that WebAdmins are full admins? Can anyone help, is there something I've missed?