Forum Discussion

Nfordhk_66801's avatar
Nfordhk_66801
Icon for Nimbostratus rankNimbostratus
Feb 06, 2015

APM AD Query Branch Rules

Hi,

 

We're attempting to setup APM AD query branch rules using OU.

 

Our details looks like this (sanitized a little): CN=username,OU=IT,OU=Departments,OU=Office,DC=domain,DC=com

 

The default string provided is: CN=MY_GROUP, CN=Users, DC=MY_DOMAIN

 

Is there an issue with using OUs? As we can't seem to get it to work. Also we've created the AAA AD server object and supplied it with credentials. However, is there anyway to actually verify this piece is working standalone?

 

  • A couple things to check

    • In your
      AD Query
      , are you specifying which attributes you want, or leaving it default (which gets all of them).
    • I'd open
      AD Users and computers
      and open the group object and copy the DN from there to paste into the branch rule just to make sure there's no typos or anything.
    • you show CN=username. This is for checking group membership for a user right?