Deploy using AD Security groups

ironjackflint
New Contributor

I've been looking at deploying using security groups in AD. I have Casper 8.64. I've checked the LDAP config and JSS will return results on users and groups but cannot tell me group membership details.

Any help would be great! If this has been raised as a feature request I'll vote it up!

Cheers!

3 REPLIES 3

frozenarse
Contributor II

Are you saying that you aren't getting accurate results when you run the "User Group Membership Lookup" test?

Just to double check some things, try to run the test where the user is directly a member of a certain group and not nested. Also what options do you have selected for the Group Membership LDAP mappings?

ironjackflint
New Contributor

Exactly, I try and find a user that I know thats in a group but JSS can't resolve that query. It sees individual users fine and can lookup groups no problem.

The following are selected:
The user object contains a multi-valued attribute with all of the groups it is a member of
Use Distinguished Name of groups and
Map Group memberships to: memberOf

frozenarse
Contributor II

Sounds similar to what I initially experienced.

Right now my Group Membership mappings settings are:

The Group object contains a multi-valued attribute
Map Member Users to: member
Use Distinguished Name of members is selected.

Obviously every environment is different but you might want to give those a try quick.