Access to Restricted Agents by Active Directory Groups
Access to Restricted Agents by Active Directory Groups
Active Directory supports multiple types of groups. When configured to use Active Directory as an identity source, AM supports only Universal groups.
When you select an Active Directory group for access on a restricted agent, make sure that you select a Universal group. If you use any other type of Active Directory group, the user may not be able to authenticate. When you view the Active Directory groups from the Security Console, the Security Console displays all groups, regardless of type.
The Security Console cannot display a user’s primary Active Directory user group, such as Domain Users. The group appears empty even though it has members.
Related Articles
RSA Governance & Lifecycle Recipes: Chart - Application - Application Shared Accounts Number of Views RSA Identity Governance and Lifecycle - Novell eDirectory Connector Datasheet Number of Views RSA Governance & Lifecycle Java Code-Based Connector Datasheet Guide Number of Views RSA Governance & Lifecycle Linux CentOS Connector Datasheet Number of Views RSA Governance & Lifecycle Database Sybase Connector Datasheet Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Mandatory Certificate Upgrade Required by 6th October 2025 for RSA MFA Agent for PAM, RSA MFA Agent for Apache, and Third … RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
