Permission check for members of AD security groups via SharePoint groups

Oct 3, 2016 at 12:25 PM
Hello, Yvan,

Could you please advise the solution for the following issue:

On site we have SharePoint group with included AD group.
People picker (configured for LDAPCP) resolves input correctly either for users or groups.
When checking permissions on this site, for AD group we can see
~ "Read" rights given via "Given through the "Members" group." but for user who is a member of this security group the following is displayed: "None".

I suppose that something is wrong with claims mapping, that's why an isolated user cannot be parsed.

Claims mapping config:
Image

Thanks,
S
Oct 3, 2016 at 12:26 PM
PS Or that's a default behaviour, i'm not quite sure ..?
Coordinator
Oct 4, 2016 at 3:07 PM
Hello, can you confirm you are using the latest version of LDAPCP?
Version 5 introduces augmentation, which must address this scenario, but it doesn't seem to work in your environment.
Can you filter on product/area "LDAPCP" and on category "Augmentation" and check if augmentation succeeds for users you are validating with "check permission"?