is it compulsory to create an LDAP attribute map in order to use a DAP entry with the LDAP member of check ? My attempted DAP entry does not not seem to take this into account at all.
Yes you need to create attribute map for ASA to be able to map LDAP attributes to ASA attributes. This mapping doesn't exist by default in ASA and LDAP attribute maps are used to leverage this.
Yes you need to create attribute map for ASA to be able to map LDAP attributes to ASA attributes. This mapping doesn't exist by default in ASA and LDAP attribute maps are used to leverage this.
I do not think so. LDAP attributes are returned without ldap attribute maps configured. Only if you need to map "member-of" to a group-policy (or any other ASA attribute) do you need the LDAP attribute map.
DAP itself cannot assign a group policy to a user, but you can use LDAP member-of as a AAA condition without creating an LDAP attribute map.
