This is a short tutorial using ClearPass enforcement policy to check if the user is member of nested or higher level AD group. We’ll explore two methods for it.
There are many cases that the users are member of a sub group that are all part of a higher level group and you want to create a enforcement policy with fewer rules to check for the membership of a AD user group.
Solutions Tech Lab 
Leave a comment