https://community.cisco.com/t5/network-access-control/authorization-condition-ok-to-use-ad-groups-with-nested-groups/m-p/2375478#M112899 <HTML><HEAD></HEAD><BODY><P>Hi David,</P><P></P><P>Yes, it works.</P><P></P><P>We are using special group for wlan access and we put Domain Users to this group from all domains we have.</P><P></P><P>Karel</P></BODY></HTML> Thu, 28 Nov 2013 15:50:55 GMT Karel Navratil 2013-11-28T15:50:55Z https://community.cisco.com/t5/network-access-control/authorization-condition-ok-to-use-ad-groups-with-nested-groups/m-p/2375477#M112896 <P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Does ISE 1.2 Authorization policies permit a condition referencing an AD group containing other groups nested within?&nbsp; If not, is the alternative to create an authorization policy for each AD group in the case where a policy is to be applied if a user is a member of group A or group B?</P><P></P><P>Thanks much,</P><P>David D.</P> Mon, 11 Mar 2019 04:08:30 GMT https://community.cisco.com/t5/network-access-control/authorization-condition-ok-to-use-ad-groups-with-nested-groups/m-p/2375477#M112896 david.daverso 2019-03-11T04:08:30Z https://community.cisco.com/t5/network-access-control/authorization-condition-ok-to-use-ad-groups-with-nested-groups/m-p/2375478#M112899 <HTML><HEAD></HEAD><BODY><P>Hi David,</P><P></P><P>Yes, it works.</P><P></P><P>We are using special group for wlan access and we put Domain Users to this group from all domains we have.</P><P></P><P>Karel</P></BODY></HTML> Thu, 28 Nov 2013 15:50:55 GMT https://community.cisco.com/t5/network-access-control/authorization-condition-ok-to-use-ad-groups-with-nested-groups/m-p/2375478#M112899 Karel Navratil 2013-11-28T15:50:55Z