I am trying to setup my SA 700 to allow users access according to domain account/group membership.
I entered the following information:
Primary DC IP
Domain Name: ALL UPPERCASE
A computer Name for the SA device.
I checked Allow domain to be specified as part of username
I entered a Domain Admin account & password for the ADMINISTRATOR section.
I selected Keberos, NTLM V1 & 2 & Use LDAP to get Kerberos realm name under additonal options.
After running the Test Configiration I recieve a "Configuration successful. No errors detected." or sometimes when I re-run the test I get "You can not change the password of the IVE computer account on the active directory server using the specified administrator credentials."
When I go to User Authentication Realms > FA Auth > Role Mapping Rule and try to create a rule based on Group Membership, select Groups & search, I can not find any of my Domain Groups.
What do I need to do to proparly configure this device to authenticate against my existing AD?
Thanks.
