Are nested AD groups supported in the Additional LDAP filter in an AD UDC
I have created a user directory connector that reads users from active directory (sync data for existing users ticked), and has an additional filter that specifies a particular AD group for users who should have access to Sens. I had hoped to nest more AD groups in this group to permit users access, but only users listed directly in the queried AD group are sync'd, not users that belong to nested groups.
Does anyone know if nested groups are permitted in a UDC LDAP query?
Never did. My own investigations suggested that it doesnt, but the LDAP query can be updated to OR type. which I think will overcome my initial problem. It does mean the security maintenance is a bit heavier though.