cancel
Showing results for 
Search instead for 
Did you mean: 

Can anyone post an example of their LDAP group set up?

New Contributor

Can anyone post an example of their LDAP group set up?

I can only get "state" invalid. The documentation on this is spotty, can someone give me a working example?
2 REPLIES 2
New Contributor

Re: Can anyone post an example of their LDAP group set up?

Well I got the LDAP groups verified after fiddling around for a day or two. Now a new user who has never created an account, gets an error when trying to use the registration page. Like the user doesn't exist in that group or something. Any ideas?
Highlighted
Pulser

Re: Can anyone post an example of their LDAP group set up?

Hello @Colock , 

 

You can define a role mapping rule based on the primaryGroupID user attribute. The primaryGroupID for Domain Users is 513 and you will be able to map users based on Domain Users Group. The number 513 does not appear in the Domain Users attributes. It is encoded into the group's objectSid attribute. If you have to role map based on any other AD group, which is a primary Group, you need to find the primaryGroupID.

 

Please find the below KB article it may be useful: 

 

https://kb.pulsesecure.net/articles/Pulse_Secure_Article/KB2527