AD - Update Groups from AD

Question

Hi.&nbsp;I am having problems when trying to update / fetch groups from Active Directory. I found a log entry saying status code: 01490200 - Unable to get domain groups for server /Common/aaa.ad.resurs.local.&nbsp;Is there any more info I can get. Maybe a debug or something?I need some advice, thanks.

dave_w · Answer

Hello,&nbsp;I would set the Access Policy logs on debug. If you are on 13.x and above go into Access&gt;Event Logs&gt;Settings, you can change the log level here.At the same time run a tcpdump on the server to see what is being returned or if APM can not reach the server:&nbsp;#tcpdump -ni 0.0:nnn -s0 '((host x.x.x.x) and (port 88 or port 389)) or ((port 88 or port 389 or port 445 or port 464) or (port 53))' -vvv -w /shared/tmp/ad_test_2019-09-09.pcap

Forum Discussion

AD - Update Groups from AD

1 Reply

Recent Discussions

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

SMTP profile not visible & showing

About AWAF "Redirect URLs" in "Responses and Blocks"

F5 iRule to replace host to path

Related Content

Auditing Security Policy Updates

v11: iRules Data Group Updates

TMOS script for updating SSL profile cipher group and TLS versions

Update an internal Data Group via API?

Re: Automate Data Group updates on many Big-IP devices using Big-IQ or Ansible