I am trying to intergrate NAC into AD using LDAP.
When adding the LDAP server you must specify a "User Sear Root".
Does this location have to be a OU?
The client I am configuring this for utilizes Security Groups, If I look at the attributes for the security group it looks as follows: CN=Wireless Users,OU=Security Groups,OU=Global Services,DC=X,DC=Y,DC=Z, Nac reports success but the user group is empty.
If is use a OU group i works fine.