Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Daeyx
Explorer

Identity Collector not reading AD Security Group within same User OU

Hello,

 

I am having an issue with our gateway not propagating all of AD Groups associated with users logging in and thus are not matching to the Access Role in an ACL. 

We have a Vendor that logs into our environment through Checkpoint VPN and will have all the AD Groups that they are a member of propagate properly if that specific AD Group is located in Domain/Users.

However, we have a couple of security groups present inside the same OU that the Users themselves reside in.

So the User and AD Security Group will be in Domain/Vendor/*Vendor OU* 

Any Security Group that is present within the same OU as the User will not propagate and the firewall will not see them as part of that group. Any reason as to why this is?

 

Thanks much.

0 Kudos
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events