05-29-2018 03:24 PM - edited 05-29-2018 03:34 PM
Currently I have 2 HA'd 3020 on 8.0.0 code. I have SSL vpn setup using globalprotect with LDAP. Also having implemented User-id for policy access.
All this is working.
My problem is, when users access the network over globalprotect. Those users miss the rules created based on the "domain\user" and are only seen as "user". Now if the user accesses a server, service, drive, etc, the user will then have the correct "domain\user". This then forcing the user to use the correct rule set. But if the users dont access any AD services, they will then be forced to a "non user id" rule.
Is there a way to append the "domain\" to globalprotect users?
Would it be better to just segement globalprotect users? This seems to double the work and a bit mundayne.
05-30-2018 12:30 AM
Adjusting the Username Modifier in the authentication profile will correct this issue
05-30-2018 12:30 AM
Adjusting the Username Modifier in the authentication profile will correct this issue
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
