NAC Guest Server AD integration

scottrunyon · ‎10-05-2009

Hello,

I am trying to setup the Sponsor Groups tied to AD groups. I have the NGS connected to the AD, however all a portion of the Groups from AD are populating the pulldown menu. As a add more Domain Controllers more groups are added but still not all of them.

Any limitations to the number of objects learned from each DC?

Lucien Avramov · ‎10-05-2009

There was a limit of 1000 users per AD in 2.0

It is supposed to be fixed in 2.0.1 onwards.

I filed the bug:

CSCsx66219 NGS: AD group mapping not working when querying domain controller

scottrunyon · ‎10-05-2009

Yes,

I had that problem orginally and it was fixed with patch.

The problem now is that some groups load, but a lot do not. Also there is no error message just missing AD groups.

Lucien Avramov · ‎10-05-2009

You may want to open a TAC case, there is an open ldap tool that can be run on the NGS server to find out where the problem is. If nothing is showned in all the NGS logs, then open a TAC case.

Else post the logs here and I will look at them

j-mccarthy · ‎12-07-2009

I am having the exact same problem right now.

AD integration is working, but the customer wants to implement a specific group. When I attempt to load the groups I don't see the one I'm looking for in the list.

My servers are running 2.0.1

Another interesting side effect is sometimes displaying the AD groups will never complete, just sits there, then you cant even open the admin page in a different browser window and I have to reboot the server.