Loose role - Identity awareness

Bastien_Lauc · ‎2023-12-14

Hello,

I have a rule with source an access role where there are 2 AD groups.
A user tells me that he no longer arrives has matched the rule while he belongs to one of the 2 groups of the AD.
I saw in the logs that one moment he loses in his roles, the access role in question and it does not come back.
To work around the problem, I added in the rule an access role with its AD account in source (it works).
How can this problem be corrected?

Best Regards,

Bastien

Chris_Atkinson · ‎2023-12-15

Please share some additional information:

- Gateway version & Jumbo

- Identity source type: IDC or ADQuery - admin creds valid?

- What does 'pdp monitor user UserName' show?

- How many LDAP account units are there configured?

CCSM R77/R80/ELITE

Bastien_Lauc · ‎2023-12-18

Hello,

Gateway version r81.10

Identity source Identity collector

With pdp monitor user UserName, I don't see the role

There is only one LDAP account units

Best Regards,

Bastien

Chris_Atkinson · ‎2023-12-18

If you are already using a recent JHF take for the Gateway and IDC agent version I would suggest a live session with TAC to troubleshoot the issue further.

CCSM R77/R80/ELITE

Bastien_Lauc · ‎2023-12-18

TAC 041

Chris_Atkinson · ‎2023-12-19

Take 41 is a valid take# for R81.20.

I assume instead this is your abbreviated IDC version?

CCSM R77/R80/ELITE

Are you a member of CheckMates?

Loose role - Identity awareness