Jamf Nation Community

jpellet2 · ‎04-03-2012

This is our fist-time setup and we are experiencing an issue with the AD/LDAP lookups. We have the mappings right for the user and we can search for a group but the issue comes when we search for group membership. No matter what we choose, the JSS can't seem to see the users in the groups.

Here's the situation:

We have an OU called groups where all of our groups are located (many in sub-containers). The groups have an attribute called members which contains all of the members of the group however the usernames are not listed, the DN of the user is listed.

Even checking the box for the DN, the user isn't located as a member of the group.

steelopus · ‎04-03-2012

We had a similar issue that may or may not be what you're dealing with.

In the LDAP settings on your JSS, make sure you have checked the box for "Use Recursive Group Lookups."

Before we checked that box, we were unable to search for users within groups, after checking the box it now works correctly.

jpellet2 · ‎04-03-2012

You don't get that option when your group object contains the membership and not the user object but I appreciate the help.

Jamf Nation Community

Trouble with AD lookups