- Introduction
- Installation
- Getting Started
- Setup the Environment
- Setup the UKG Pro Connection
- Setup the Active Directory Connection
- Delegation of Control
- Setup Rules
- Link (Identity Match)
- Employee Filter
- Auto Provision
- Auto Provision Conditions
- User Logon Name
- User Logon Name Suffix
- Password
- Password Never Expires
- Setup Mappings
- Field Mappings
- Enable Account
- Container
- Network Access Permission
- Custom Attributes
- Group Mappings
- Working with Expressions
- String Expressions
- Bool Expressions
- Quick Expressions
- Working with Conditional Expressions
- Working with Constants
- Ignore Constant
- IsInsert Constant
- IsUpdate Constant
- IsDisable Constant
- Auto Constant
- Supported Fields
- Person (UKG)
- Employment (UKG)
- Job (UKG)
- Location (UKG)
- Org Level 1 to 4 (UKG)
- Project (UKG)
- Platform Configuration (UKG)
- User (Active Directory)
- Sending Email to UKG Pro
- Notifications
- SMTP Settings
- Scheduling
- Viewing the Logs
- Activate a License
- Security
- Introduction
- Installation
- Getting Started
- Setup the Environment
- Setup the UKG Pro Connection
- Setup the Active Directory Connection
- Delegation of Control
- Setup Rules
- Link (Identity Match)
- Employee Filter
- Auto Provision
- Auto Provision Conditions
- User Logon Name
- User Logon Name Suffix
- Password
- Password Never Expires
- Setup Mappings
- Field Mappings
- Enable Account
- Container
- Network Access Permission
- Custom Attributes
- Group Mappings
- Working with Expressions
- String Expressions
- Bool Expressions
- Quick Expressions
- Working with Conditional Expressions
- Working with Constants
- Ignore Constant
- IsInsert Constant
- IsUpdate Constant
- IsDisable Constant
- Auto Constant
- Supported Fields
- Person (UKG)
- Employment (UKG)
- Job (UKG)
- Location (UKG)
- Org Level 1 to 4 (UKG)
- Project (UKG)
- Platform Configuration (UKG)
- User (Active Directory)
- Sending Email to UKG Pro
- Notifications
- SMTP Settings
- Scheduling
- Viewing the Logs
- Activate a License
- Security
Network Access Permission
The Network Access Permission mapping allows you to control the msNPAllowDialin AD attribute.
This is a bool mapping that must result in either a true, false or null.
- A true result will set msNPAllowDialin to Allow access
- A false result will set msNPAllowDialin to Deny access
- A null result will set msNPAllowDialin to Control access through NPS Network Policy
Example If you want to allow access for all regular employees, then set an expression that results in true for regular employees:
Employment.EmployeeTypeCode == "REG"
Example If you want to allow access for all employees, then set an expression that results in true for everyone:
true
Example If you want to deny access for all contractor employees, then set an expression that results in false for contractors and true for everybody else:
Employment.EmployeeTypeCode != "CON"
Example If you want everyone to be set to Control access through NPS Network Policy, then set an expression that results in null for everyone:
null
