We have successfully implemented LDAP authentication in our Serv-U environment. However, we are running into an issue with how LDAP groups work in Serv-U.
In our setup, an ActiveDirectory user may be assigned to one or more AD security groups. Each security group is associated with a corresponding Serv-U security group designed to enable specific features in Serv-U that gives the user access to specific things such as access to certain virtual folders.
For IT Admins, we have created an additional security group that can be added to their AD account that enables "System Administrator" privileges in Serv-U. This is then associated with a corresponding Serv-U LDAP Group that has the "Administration Privilege" field set to "System Administrator".
However, when we associate other Serv-U LDAP Groups to an IT Admin's account, the IT Admin is downgraded to "No Privilege" access. .
What seems to be missing from the Administration Privilege" field is the ability to either select "<< Inherit default value>>" and/or override the default value (where the chosen value that overrides the default setting is shown in BOLD in the user interface). Inherit default value is missing from the user interface in this particular drop down but appears in most other fields.
Is this a known limitation in Serv-U and is there a specific reason why it has been implemented this way.
Whilst the simplest answer would be to have each LDAP group set with the Administration Privilege field enabled as "System Administrator", I have non-IT personnel using some of the same LDAP groups so that wouldn't work for us.
