Set WordPress roles based on Organizational Unit Paths

A popular feature of Google Apps Login Enterprise version has always been the ability to specify role mapping rules – so that members of different Google Groups can have different WordPress roles assigned to them.

The only problem was that some companies didn’t have relevant Google Groups already set up (e.g. for marketing@mycompany.com to contain their Marketing team), but instead had their G Suite domain arranged around different Organizational Units to control access to various G Suite features.

In our latest release (Enterprise version 3.1), we have extended the ‘Role Mapping Rules’ to allow you to specify Organizational Unit Paths as well as Google Groups. An OrgUnitPath is just a way that G Suite uses to specify the hierarchy of OrgUnits. For example, if you want to specify an OrgUnit called Marketing which itself is located in a top-level OrgUnit called Staff, the OrgUnitPath to that would be /Staff/Marketing.

We have also improved the user interface so that rules can now be drag-and-dropped to change the order in which they are applied, and it is easy to delete existing rules and add new ones.

In the example rules shown above, you can see we want members of the Google Group developers@mycompany.com to become Admins in WordPress; and members of the Group marketing@mycompany.com to become Editors. If the user is in neither of those Groups, then they may become Contributors if they belong to the /HardwareDivision OrgUnitPath (or below – e.g. /HardwareDivision/Mobile). Finally, if they do not match any of the rules they will be assigned the ‘Default Role’ of Subscriber.

For more information about setting up rules please see the Enterprise Configuration instructions, or get in touch.

Google Apps Login is trusted by thousands of organizations from small businesses to NASDAQ-listed companies and government organizations.

Users click their way through Login via Google (just one click after the first time)

Users click their way through Login via Google (just one click after the first time)


You can try it out by clicking below to auto-create a test account on this site! This will show you the basic Google login process.
Try out Google login

Logging in is only the start – Google Apps Login takes care of all your WordPress user management. Find out more here.

×