When i select add in the user section of the policy it displays some groups before i type anything, these groups are already added in my group mapping “group include list“.
do you not have any groups in your list, its supposed to speed things up...
I wouls say no, perhaps you could test this to confirm, but its my understanding that when you place a group in the group include list, the firewall checks every 60 (default) mins to see who is in that group and stores it in its cache, i know this because when a user is added to a group on ad i have to run debug user-id refresh group-mapping to update the group membership cache if i need the mapping urgent...
Also I have noticed that a commit is required from the time the group is added to when you can see it in the pull down menu for a policy.
Hope that helps.
Only if you want it to auto populate or generate in the list. You can still use the fully qualified and it will function at the time of commit.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!