How to pull groups and users in specific OU in AD

Which IIQ version are you inquiring about?

Version 8.0

Please share any images or screenshots, if relevant.

2024-06-05_16-30-08.png1127×785 99.5 KB

Share all details related to your problem, including any error messages you may have received.

I need to pull in all the groups that are in a specific OU in AD and all the members that are in the groups. I have about 10 groups in the AUT OU, AUT OU is in the Groups OU. I only need the users that are in those 10 groups to be pulling in and those 10 groups will be marked as entitlements. I don’t know what I’m doing wrong since I can’t get the users that are in those 10 groups to be pulling in. Please help.

You need to specify the OU for both the account and group membership search. Also for the group search.

Your screen shot looks unfamiliar, are you sure you are using IdentityIQ?

Hi @Amylee,

Just a note please change the label as it says IIQ.

You can use ldap filter also if you are able to filter out your desired user via it.

Thanks

Hi Ashutosh,

I made the change, hopefully it’s correct now. I can get all the “objects” (groups) to show up but I also need to get the users that are in the objects. the OU only contains groups (objects) What would I apply to the idap filter? hope this makes sense.

Hi @Amylee,

I don’t think your approach will work. You cannot map the group OU under the User search DN and bring in the users (Assuming that the users exist in a separate OU).

It only works the other way around. You can map the user OU and the AD groups which the users are part of, will come into ISC automatically.

Is there a way to filter for only specific AD groups.? I don’t think so, as all the groups that the users are members of will automatically come in as part of the aggregation.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.