Forum Discussion
Ossar_178453
Altostratus
AltostratusAD/LDAP authentication/authorization w/ "Remote Role Groups"
Hello,
I have been experimenting with AD/LDAP auth and have got it working to some extent. However, I am not successful in making the Remote Role Groups work.
It is just lite they are not consid...
StacyAnn_257051Altostratus
Altostratusthe trick is to add a group with the same exact name of your active directory group under Remote Role Groups, when adding the attribute string be sure to use memberOf= so it will search that group for users to authenticate. Under the authentication tab in remote directory tree add the base DN for your AD and be sure to set Role to no access under external users. This will allow access to only the users who are in the group you specified. this link also provides some good information. https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/tmos-implementations-11-1-0/16.html
Abdessamad_851
Nimbostratus
NimbostratusHello,
Do you know how to get it working when nested groups are used?
I maanaged to make it work when the user is directly attached to a group, but it desn't work when we should check a sub group (nested).
Thanks.
