Hello,
I am having an issue with our gateway not propagating all of AD Groups associated with users logging in and thus are not matching to the Access Role in an ACL.
We have a Vendor that logs into our environment through Checkpoint VPN and will have all the AD Groups that they are a member of propagate properly if that specific AD Group is located in Domain/Users.
However, we have a couple of security groups present inside the same OU that the Users themselves reside in.
So the User and AD Security Group will be in Domain/Vendor/*Vendor OU*
Any Security Group that is present within the same OU as the User will not propagate and the firewall will not see them as part of that group. Any reason as to why this is?
Thanks much.