NAC Guest Server AD integration

Unanswered Question
Oct 5th, 2009


I am trying to setup the Sponsor Groups tied to AD groups. I have the NGS connected to the AD, however all a portion of the Groups from AD are populating the pulldown menu. As a add more Domain Controllers more groups are added but still not all of them.

Any limitations to the number of objects learned from each DC?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Lucien Avramov Mon, 10/05/2009 - 08:33

There was a limit of 1000 users per AD in 2.0

It is supposed to be fixed in 2.0.1 onwards.

I filed the bug:

CSCsx66219 NGS: AD group mapping not working when querying domain controller

scottrunyon Mon, 10/05/2009 - 08:36


I had that problem orginally and it was fixed with patch.

The problem now is that some groups load, but a lot do not. Also there is no error message just missing AD groups.

Lucien Avramov Mon, 10/05/2009 - 09:44

You may want to open a TAC case, there is an open ldap tool that can be run on the NGS server to find out where the problem is. If nothing is showned in all the NGS logs, then open a TAC case.

Else post the logs here and I will look at them

j-mccarthy Mon, 12/07/2009 - 22:53

I am having the exact same problem right now.

AD integration is working, but the customer wants to implement a specific group. When I attempt to load the groups I don't see the one I'm looking for in the list.

My servers are running 2.0.1

Another interesting side effect is sometimes displaying the AD groups will never complete, just sits there, then you cant even open the admin page in a different browser window and I have to reboot the server.


This Discussion



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode