mam uzytkownika AD w dwoch grupach AD:
Kod: Zaznacz cały
map-value memberOf CN=*|vpn|WKS,OU=GAST_Gruppen,OU=GAST,DC=*,DC=*,DC=* GP-External-WKS
map-value memberOf CN=*|vpn|LS-IDS,OU=GAST_Gruppen,OU=GAST,DC=*,DC=*,DC=* GP-External-LSIDS
2) Gdy wybiera profil LSIDS, nie dziala. ASA laduje mu profil WKS. Dlaczego? W logach mam:
Kod: Zaznacz cały
*
[4117] Authentication successful for X30000909 to 10.170.172.8
*
[4117] memberOf: value = CN=*|vpn|WKS,OU=GAST_Gruppen,OU=GAST,DC=*,DC=*,DC=*
[4117] mapped to Group-Policy: value = GP-External-WKS
[4117] mapped to LDAP-Class: value = GP-External-WKS
[4117] memberOf: value = CN=*|vpn|LS-IDS,OU=GAST_Gruppen,OU=GAST,DC=*,DC=*,DC=*
[4117] mapped to Group-Policy: value = GP-External-LSIDS
[4117] mapped to LDAP-Class: value = GP-External-LSIDS
Kod: Zaznacz cały
6 Aug 12 2015 14:57:52 113004 AAA user authentication Successful : server = 10.170.172.8 : user = X30000909
6 Aug 12 2015 14:57:52 113003 AAA group policy for user X30000909 is being set to GP-External-WKS
6 Aug 12 2015 14:57:52 113011 AAA retrieved user specific group policy (GP-External-WKS) for user = X30000909
6 Aug 12 2015 14:57:52 113009 AAA retrieved default group policy (GP-NoAccess) for user = X30000909
6 Aug 12 2015 14:57:52 113008 AAA transaction status ACCEPT : user = X30000909