Who can use the permission Manage Directory Mapping?

The permission to manage directory mapping is specifically intended for users who have roles that require them to interact directly with the management of user directories within the CyberArk environment. PrivateArk users, who utilize the main client to configure, manage, and perform administrative tasks within the CyberArk Vault, have the necessary permissions and capabilities to manage these directory mappings effectively.

This permission is crucial for coordinating access and ensuring that users can authenticate and authorize themselves properly. Organizations utilizing CyberArk typically assign this role to specific users who need to handle detailed directory configurations, including setting up Active Directory or LDAP mappings for user management.

In contrast to the other groups mentioned, such as all users of the Vault, transparent (AD/LDAP) users, or network administrators, this permission is not universally available. Many users do not need access to directory mapping functionality as part of their regular duties, and network administrators focus primarily on network access and configurations, not necessarily on user directory management. Therefore, only PrivateArk users are granted the necessary permissions to manage directory mapping.