show user group list - Shows custom group only

Reply
Cyber Elite

show user group list - Shows custom group only

Under group mappings of LDAP i have so many AD groups.

 

But when i run below command 

 

show user group list


Total: 1
1* : Custom Group

 

IT does not show me any group names from AD?

what is the reason for that?

 

Also what is difference between Custom group and AD groups in LDAP?

MP
Tags (2)
L7 Applicator

do you have the correct setting in device/user identification/group mapping settings/server profile/group objects/object class

 

this needs to set to group. if set to user it will not show in cli

 

gid.png

 

AD groups are all users with the group attribute of "member"

 

custom groups are defined from an attribute of your choice, in affect...   a custom group...

Cyber Elite

I have same settings as you have shown

MP
L7 Applicator

and are your groups listed in "included groups" as below

 

uid2.png

Cyber Elite

yes i have as you mentioned.

MP
L7 Applicator

try...

 

show user group-mapping state all

 

 

can you see a line with "proxy state"

 

if you can then go to user-id agents and remove "use as ldap proxy"

Cyber Elite

no i do not see line with proxy state

MP
L7 Applicator

are you running multi VSYS?

Cyber Elite

Not running multivsys

MP
L7 Applicator

show user group-mapping statistics

 

 

how many groups are numbered here?

 

 

 

do you use policies based on group mappings and do they work?

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!