- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
06-05-2022 08:50 AM
Server monitoring is not the same thing as group mapping. You need to configure a group mapping config under the "Group Mapping" tab.
Once configured, you can start with the following command to check the actual status. It might be that there's an issue connecting to the server on LDAP or something.
> show user group-mapping state all
The useridd log will contain the actual connection attempts to LDAP/LDAPS.
> less mp-log useridd.log
If you already have a group mapping configured, are you able to browse your LDAP tree from the GUI under your group mapping config -> group include list? If not, you likely have connectivity or authentication issues to LDAP.
If the firewall is actually connecting and you still see 0 groups, you might have the base dn in your LDAP profile set incorrectly. You need to set this either at the root, or to somewhere which is in between the root and where the users and groups are both configured.