We are at 8.0R8.1 and using OpenLDAP Auth Server for authentication. We are in the process of replacing the Auth Server with a Windows 2008 R2 DC and AD.
I have created the Auth Server, and joined the domain (all green light!), but when I try to create Rule and role mapping based on AD I don't see any groups/users! In Auth Server page, I can't lookup any Users/Groups on Users tab either!
How is your username defined? What does your TCP dump show? What is the time skew between your PCS & AD server (needs to be less than 5 min)? The users tab does not do a lookup against users; there is no location to lookup users on the appliance for testing, just when a user logs in. What does your policy trace show?