Access to Restricted Agents by Active Directory Groups
Access to Restricted Agents by Active Directory Groups
Active Directory supports multiple types of groups. When configured to use Active Directory as an identity source, AM supports only Universal groups.
When you select an Active Directory group for access on a restricted agent, make sure that you select a Universal group. If you use any other type of Active Directory group, the user may not be able to authenticate. When you view the Active Directory groups from the Security Console, the Security Console displays all groups, regardless of type.
The Security Console cannot display a user’s primary Active Directory user group, such as Domain Users. The group appears empty even though it has members.
Related Articles
RSA Governance & Lifecycle Database Sybase Connector Datasheet Number of Views RSA Governance & Lifecycle Linux CentOS Connector Datasheet Number of Views RSA Governance & Lifecycle Recipes: Chart - Application - Application Shared Accounts Number of Views RSA Identity Governance and Lifecycle - Novell eDirectory Connector Datasheet Number of Views RSA Governance & Lifecycle Custom Schema Connector Guide Number of Views
Trending Articles
How to Download OTP Token Seed Files from myRSA RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Download RSA SecurID Access Cloud User Event audit logs using Cloud Administration REST API CLU RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
