To Map Microsoft Entra ID Groups to Roles in MYOB Acumatica

After you have enabled integration with Microsoft Entra ID, you need to map Microsoft Entra ID groups to the user roles defined in MYOB Acumatica by using the User Roles (SM201005) form.

Before You Begin

Before you start configuring your system, make sure that all the domain users have email addresses configured in Microsoft Entra ID.

To Map Active Directory Groups to MYOB Acumatica Roles

1. Open the User Roles (SM201005) form.
2. In the Summary area, in the Role Name box, select the role you want to associate with an Active Directory group (or with multiple groups).
3. On the Active Directory tab, click Add Row.
   Attention:

   The Active Directory tab appears on this form if the integration of MYOB Acumatica with Entra ID has been enabled on the Security Preferences form (SM.20.10.60), as described in To Enable Microsoft Entra ID in MYOB Acumatica.
4. In the Group column of the new row, select the AD group that you want to associate with the role.
5. On the form toolbar, click Save.
6. Repeat Instructions 2 through 5 for every role that should be mapped to AD groups.

To Remove the Mapping of Active Directory Groups to Roles

1. Open the User Roles (SM201005) form.
2. In the Summary area, in the Role Name box, select the role for which you want to remove association with an Active Directory group (or with multiple groups).
3. Click the row that contains the AD group that you want to disassociate from the role, and click Delete Row on the table toolbar.
4. On the form toolbar, click Save.
5. Repeat Instructions 2 through 4 for every role for which mapping with AD groups should be removed.

After you have mapped Microsoft Entra ID groups with user roles in MYOB Acumatica, you can assign specific roles for a particular domain user, as described in To Set Up Role Assignment for Domain Users.