SiteScope LDAP authentication with nested groups
I have recently set up LDAP authentication in SiteScope and it works as expected except for users which are members of nested groups.
I configured only 1 AD group via 1 user profile. Authentication and authorization for members of this group is working as expected. However, my group has some nested groups, and the users from those nested groups cannot authenticate, they get "user or password incorrect". I also tried other AD groups with same result. It is not a password issue, as login into other apps works.
I am running SiteScope 2018.11 on Windows Server 2016. According to the SiteScope documentation LDAP authentication is supported for nested security groups in an Active Directory environment: https://docs.microfocus.com/itom/SiteScope:2018.11/Use/auth_for_sis#How_to_enable_SiteScope_to_use_LDAP
I use the same group in APM where users from nested groups authenticate successfully.
If I move a user from a nested group to the parent group, the user can authenicate.
I have also a case open with Micro Focus since 1 month, but not much is happening.
My questions are: should this really work? Does someone from here has it working? Is there any special config I have to do?
Re: SiteScope LDAP authentication with nested groups
Thanks for reaching Microfocus support,
What is the result using LDAP tool with an user can't authenticate?
According with the documentation it works, but should check why is not able to authenticate,
Looking forward to the response,