Forum Discussion
StacyAnn_257051
Apr 01, 2016Altostratus
the trick is to add a group with the same exact name of your active directory group under Remote Role Groups, when adding the attribute string be sure to use memberOf= so it will search that group for users to authenticate. Under the authentication tab in remote directory tree add the base DN for your AD and be sure to set Role to no access under external users. This will allow access to only the users who are in the group you specified. this link also provides some good information. https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-11-1-0/16.html
- Abdessamad_851Jun 06, 2016NimbostratusHello, Do you know how to get it working when nested groups are used? I maanaged to make it work when the user is directly attached to a group, but it desn't work when we should check a sub group (nested). Thanks.