Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Can anyone post an example of their LDAP group set up?

Colock
New Contributor
‎08-31-2017 08:31:PM
‎08-31-2017 08:31:PM

Can anyone post an example of their LDAP group set up?

I can only get "state" invalid. The documentation on this is spotty, can someone give me a working example?
0 Kudos
2 REPLIES 2
Colock
New Contributor
‎09-07-2017 09:14:PM
‎09-07-2017 09:14:PM

Re: Can anyone post an example of their LDAP group set up?

Well I got the LDAP groups verified after fiddling around for a day or two. Now a new user who has never created an account, gets an error when trying to use the registration page. Like the user doesn't exist in that group or something. Any ideas?
0 Kudos
mustangs550
Pulser
‎04-02-2019 05:14:PM
‎04-02-2019 05:14:PM

Re: Can anyone post an example of their LDAP group set up?

Hello @Colock , 

 

You can define a role mapping rule based on the primaryGroupID user attribute. The primaryGroupID for Domain Users is 513 and you will be able to map users based on Domain Users Group. The number 513 does not appear in the Domain Users attributes. It is encoded into the group's objectSid attribute. If you have to role map based on any other AD group, which is a primary Group, you need to find the primaryGroupID.

 

Please find the below KB article it may be useful: 

 

https://kb.pulsesecure.net/articles/Pulse_Secure_Article/KB2527

 

 

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.