We encountered a problem that Identity Awareness Collector is not synchronizing the information with the AD server.
It does not automatically detect an account from the AD server that is in the LDAP group to the Access Group in the SmartConsole, so users cannot go online even though they are in the access group.
We enabled the #pdp idc groups_update on parameter and updated the user information with the #pdp update specific command , but no result.
For example, I log in to the workstation with my account and when I view #pdp monitor ip I see my user, then another user logs in to the same workstation and when #pdp monitor ip it shows my account and not the account of the new user.
How can we trawl this problem?
Maybe Identity Collector can increase synchronization interval with AD server and set it automatically? Maybe someone has encountered this problem and knows what command to enter to make this automation work. R81 cluster.