Skip to main content
Question

Active Directory: Nested Groups

  • August 18, 2020
  • 1 reply
  • 1 view

Forum|alt.badge.img+7

Trying to get limitations in policies working with Active Directory. We have LDAP connectors and they can resolve users and groups, but cannot list members IN groups. It does work if the user is directly listed in the AD group, but not if they exist in a group within the group. Before I go down the rabbit hole of trying to "hunt and peck" the correct configuration, have folks ever got LDAP groups to work where nested groups are involved. Nested in this context means a Universal Group with one layer of Global Groups are nested in it. The idea is to not have users individually defined in the groups, but one layer of groups.

1 reply

Forum|alt.badge.img+15
  • Esteemed Contributor
  • 719 replies
  • August 18, 2020

Yes, nested group searches works.

Do you have "Use recursive group searches" checked under the "User Group Membership Mappings" tab?


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings