User Portal: Using nested Active Directory Groups in allowed users
In the End User Portal I'm able to specify allowed users/ groups.
Therefor I'm able to define a group based on a Active Directory group, limited to backend group membership.
Now the limitation:
The User Portal only accepts AD Groups which are directy related to AD-Users. The use of nested AD groups (Users --> AD-Group1 --> AD-Group2) are accepted by User Portal, but without any action.
A needful enhancement would be the functionality of nested AD Groups, using in User Portal
Contrary to what was previously noted, nested group support does not yet extend to support the user portal. Sincere apologies for any confusion.
Dino Müller commented
This goes fundamentally against Microsofts recommended A-G-DL-P concept.
Unbelievable that Sophos doesn't support this.
Jochen Friedrich commented
It looks like this doesn't work if UPN is used for authentication.
I can't get it to work. It still behaves as previous. I'm on 9.309-3
I believe I'm having a similar problem with FreeIPA, which seems to use nested groups by default.