This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do you set the Active Directory syntax for one group and only one group?

I'm creating a "sophosdeploy" group in my Users container in AD. I only want individuals in that group to be available to push out software to. I have the group showing as available but the entire domain shows up as individuals too. How can I eliminate all users except those in the Sophosdeploy group?



This thread was automatically locked due to age.
Parents
  • Hi Patrick,

    I am not sure I understand the exact issues here. Could you maybe provide more info.

    Are you using GPO to deploy? You could use filtering to apply the GPO only to certain groups.

    Please provide more information on your situation

    Thank you

    Voicu.

  • I am only using the Sophos AD tool. I can make my group show up with the three members. On the users tab over 900 objects are found. I'm missing something on the filtering part of the AD tool. Would it be possible for Sophos to connect to my environment and let me show a technician what I am trying to do? Patrick

Reply
  • I am only using the Sophos AD tool. I can make my group show up with the three members. On the users tab over 900 objects are found. I'm missing something on the filtering part of the AD tool. Would it be possible for Sophos to connect to my environment and let me show a technician what I am trying to do? Patrick

Children
  • Hi Patrick,

    It sounds like we are talking about Sophos Cloud here, particularity the AD Sync tool for Sophos cloud.

    If this is the case than yes, you can use the AD Filters tab to narrow users down.

    On the Cloud dashboard there is a very helpful help section that coves this as well. You can click the Help button on any page to go to the relevant page in the Help file.

    Membership of the group would be something similar to below (from : teh above specified Help file at http://docs.sophos.com/sophos-cloud/help/en-us/webhelp/index.htm#tasks/ActiveDirectorySyncSetup.htm )

    LDAP query filters

    To filter users, for example, by group membership, you can define a user query filter in this format:

    memberOf=CN=testGroup,DC=myCompany,DC=com

    The above query will limit user discovery to users belonging to “testGroup”. Note that unless a group query filter is also specified, AD Sync will discover all groups to which these discovered users belong. If you wish group discovery to also be limited to “testGroup”, you could define the following group query filter:

    CN=testGroup

    In regards with Sophos remote session, you will need to contact support and get a case opened for that

    support channels

    Good day,

    Voicu