Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
894
Views
0
Helpful
1
Replies

ASA DAP LDAP Inheritance ?

dbgreekas
Level 1
Level 1

‎12-04-2009 03:16 PM - edited ‎03-11-2019 09:45 AM

Is there any way, maybe through LUA script to check for membership in nested groups?

IE a user is directly a memeber of "Location Employees"

"Location Employees" is a memeber of  "Company Employees"

Making the rule allow anyone that is a member of "Company Employees" pass?

At the moment I can get around some of this by using LUA to match on groups ENDING in Employees but I have other cases that would work better. The only alternative I see is to create a bunch of new groups and make the users direct memebers.

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎12-08-2009 03:41 PM

Hi, there is a feature request for this, currently it is not supported

CSCso24147 VPN RA Active Directory/LDAP  Nested-Groups Support

hth

ivan

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card