Cannot Add Groups to Role Based Access Control
SecureAuth IdP Version affected: All
Description: When trying to retrieve a list of Groups not all groups are shown. Searching for the group gives “No Results found”
Cause: AD limits searches to 1000 results by default
This has been logged as Defect ID EE-623 which is scheduled for fix in version 20.x In the meantime, the following workaround should fix the issue without needing to change the AD defaults
If the AD structure makes it possible, change the Connection String to connect at a sub OU so less group results are returned.
1. Go to SecureAuth0 Data Tab
2. Set the Connection String to LDAP://example.domain.com/OU=Admin,Dc=Example,DC=Domain,Dc=com
3. Save the setting
As long as the groups and users exist in the Admin OU or below, this should reduce the number of groups to less than 1000 and solve the issue.
SecureAuth Knowledge Base Articles provide information based on specific use cases and may not apply to all appliances or configurations. Be advised that these instructions could cause harm to the environment if not followed correctly or if they do not apply to the current use case.
Customers are responsible for their own due diligence prior to utilizing this information and agree that SecureAuth is not liable for any issues caused by misconfiguration directly or indirectly related to SecureAuth products.