Just checking back on whether there are ways to control access to org or spaces using UAA scopes (i.e., mapping LDAP Groups to Cloud Foundry Orgs and/or Spaces).
I last posted to the community back in Feb 2017 and am hoping this feature is now enabled for end users (or forthcoming). Cheers!