LDAP Authentication with Nested Groups
I have my K1000 configured to authenticate users through my Active Directory domain. However, it seems as though adding a group that the user is a member of to the linked AD group does not work - the user receives an log on error. If I add the user's account directly to the group that is linked to my K1000, the user is able to log in.
First, is this the expected behavior and second, can I build my LDAP query in such a way to allow me to add groups in the manner described above?
Here are the specifics of my configuration:
Search Base DN: DC=kace,DC=com Search Filter: (&(sAMAccountName=KBOX_USER)(memberOf=CN=APP_KACE.Servers_Admin,OU=KACE,OU=App_Groups,OU=KACE_Groups,DC=kace,DC=com))