1 person found this helpful
I had tried these concepts an year back.
From what I remember, you can have groups synced from saml IDP as well as local security groups in jive. Just that each of these managed in their respective systems.
A group created and synced form saml IDP is expected to be managed from saml IDP console. They are editable in jive. but changing them in jive will not sync the changes back to saml IDP which will cause inconsistent state.
At the same time you can have groups created and totally managed in jive which have no connection with SAML IDP.
I am assuming this has not changed recently.
Here is how it works in Jive 7 can't really speak for other version.
Groups created and updated through SAML SSO login get marked as being Federated and do not allow you to edit their membership in Jive. One other thing to note is that the population of users into the group in Jive happens when they log in so it could take some time to fully see everyone in the group in Jive if people don't log in to the site on a regular basis.
Groups created in Jive are still fully editable and are shown as not being Federated.
Thank you Eric and Pawan for the info. I was hoping this was the case. It seems to make the most sense and seems consistent with the Federated/Unfederated User functionality as well.