- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
05-15-2015 10:58 AM
I want to give different access permission to different group when they access the network using the globalprotect vpn client. I have it configured but its now allowing me to pick the specific group that I want the access for
05-15-2015 12:09 PM
Navigate to Device > User Identification > Group Mapping and add the group that you want in the Group Include List. You can use the User-ID agent installed on the server as an LDAP proxy or manually configure an LDAP server.
05-15-2015 12:13 PM
You can verify that its working correctly by using the command in the CLI as an example
show user group list
show user group name "test\test test"
05-15-2015 12:15 PM
Like the dropdown list doesn't show all the groups? You may have to just filter it in the top portion or add it via cli.
05-15-2015 12:15 PM
What do you mean by working correctly? What am I going to see?
05-15-2015 12:19 PM
But this seems to only apply to security groups you can't use an ou group
05-15-2015 12:20 PM
I think the user group that I need it to read from is the users container in ad
05-15-2015 12:38 PM
https://live.paloaltonetworks.com/docs/DOC-4994
I found this document that might be helpful, not sure why you're not seeing the proper group but you might be correct. We only use security groups for this since they are purpose built in our organization so it works out well.
05-18-2015 08:05 AM
The guy you originally configured it set it to try to look at an OU, when I changed it to look at a security group then it worked
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!