In order to use AD-integration in the PA unit (setup security rules based on logged in user or which group the logged in user belongs to) one need today to setup a few additional servers running the User-ID Agent (unless you want this agent to be running straight on your AD-servers).
What would be nifty is if the PA unit could speak directly to the AD (using its own read-only account) without the need of any additional servers.
Is this perhaps already on the roadmap and is this even possible (I mean sure there is a mgmt-plane but I guess there is a reason for why the User-ID Agent of today is an external process instead of internal one)?
Or can this be done today already with lets say 4.1.1 (or the soon to be released 4.1.2)?
Solved! Go to Solution.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!