AnsweredAssumed Answered

How to create an Application based on Active Directory Security Groups

Question asked by Shlomo Katz on Jun 2, 2017
Latest reply on Jun 16, 2017 by Shlomo Katz

My scenario is as follows:

1. Create Application Collector to collect AD groups and the members, filter as "(&(objectClass=group)(cn=groupprefix*))" (no quotes). This maps the security group member > Security Group collected as Application > Aveksa Identity.

However, I am not able to fulfill AFX requests as the error below states.

 

I think I need to do a step 2 and create an Entitlement collector as well but somehow map the same security groups collected  as an entitlement as well??

 

This thought seems to be inline as to why I had to configure a request form for users to be added to a security group as "entitlement" (example: x."Business Source Name"='Active Directory' and x."Entitlement Name"= xxxxxx)

 

Does anybody have any experience for this scenario? 

Am I overlooking something simple?

 

Version 7.0.2 SP5

 

Error as follows: 

 

RSA Via L&G - Manual Fulfillment: 144711

AFX reports this item failed with code [-1] and message: 'org.mule.api.transformer.TransformerMessagingException: Referral (com.novell.ldap.LDAPReferralException). Message payload is of type: String'. If available, another handler will be used to fulfill this item.

Thank you

Shlomo

Outcomes