FritzHege_14885
Feb 18, 2016Nimbostratus
LDAP Group Resource Assign - not working - APM 11.6 HF6
I have a portal access policy that allows the user to authenticate into the portal but when the LDAP Group Resource Assign assigns the Group (LDAP Room 999999) the user receives "denied by access policy". The user is actually in a LDAP room versus a LDAP Group so my syntax may be incorrect.
This is what i have configured to use to try to use LDAP Group/Room: expr { [mcget {session.ldap.last.attr.roomNumber}] contains [mcget {session.aa.room}] }
It may be that LDAP rooms are not the same as LDAP Groups or i believe TAC was telling me to change the expression but not sure how to do that.
Any ideas are greatly appreciated.