I set up SAML based authentication and it's going well but there is just one problem.
When logging in via SAML, the users are assigned a role in Hubspot, based on their job title which comes through from Okta.
For example, "Sales" job title, would need a matching role called "Sales" in Hubspot.
This is fine, until we come across a situation where two people have the same job title but need different levels of access.
It's a security problem when we have a generic job title in Okta such as "Contractor" or even "Marketing Contractor" and one of the people is supposed to be an admin in hubspot and the others shouldn't.
I've raised two support tickets about this but can't get any traction. In the last one they said to suggest it here.
I think it's really quite critical for the security reason I mentioned. If administrators are not careful, standard users could accidentally get admin level access just through a job title change.
Hey, @StephanSM we are looking to make a change to switch over to using Roles in OKTA to map to Permission Sets in HubSpot. Would this work for the issue you are having? Happy to chat more if you want to shoot me an email also at jaleonard@hubspot.com
Hey, @StephanSM we are looking to make a change to switch over to using Roles in OKTA to map to Permission Sets in HubSpot. Would this work for the issue you are having? Happy to chat more if you want to shoot me an email also at jaleonard@hubspot.com
