Cannot Add Groups to Role Based Access Control

Follow
    Applies to:
  • Legacy SecureAuth IdP
Deployment model:
  • On Premises
  • SecureAuth IdP Version affected: All

    Description: When trying to retrieve a list of Groups not all groups are shown. Searching for the group gives “No Results found”

    Cause: AD limits searches to 1000 results by default

    Resolution:
     
    This has been logged as Defect ID EE-623 which is scheduled for fix in version 20.x  In the meantime, the following workaround should fix the issue without needing to change the AD defaults
     

    If the AD structure makes it possible, change the Connection String to connect at a sub OU so less group results are returned.

    1. Go to SecureAuth0 Data Tab
    2. Set the Connection String to LDAP://example.domain.com/OU=Admin,Dc=Example,DC=Domain,Dc=com
    3. Save the setting

    As long as the groups and users exist in the Admin OU or below, this should reduce the number of groups to less than 1000 and solve the issue.

     
     
    SecureAuth Knowledge Base Articles provide information based on specific use cases and may not apply to all appliances or configurations. Be advised that these instructions could cause harm to the environment if not followed correctly or if they do not apply to the current use case.
    Customers are responsible for their own due diligence prior to utilizing this information and agree that SecureAuth is not liable for any issues caused by misconfiguration directly or indirectly related to SecureAuth products.
    0 out of 0 found this helpful

    Comments

    0 comments

    Please sign in to leave a comment.