Forum Discussion
StacyAnn_257051
Altostratus
the trick is to add a group with the same exact name of your active directory group under Remote Role Groups, when adding the attribute string be sure to use memberOf= so it will search that group for users to authenticate. Under the authentication tab in remote directory tree add the base DN for your AD and be sure to set Role to no access under external users. This will allow access to only the users who are in the group you specified. this link also provides some good information. https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-11-1-0/16.html
Abdessamad_851
Jun 06, 2016Nimbostratus
Hello,
Do you know how to get it working when nested groups are used?
I maanaged to make it work when the user is directly attached to a group, but it desn't work when we should check a sub group (nested).
Thanks.