LDAP Mapping for Authentication Server Group Mapping

At least one LDAP server must be added in order to map it to this user group. To map LDAP users to an LDAP server, the LDAP users must have write permissions to Authentication Servers.

LDAP Mapping Permissions section enables you to associate or map Active Directory groups on your LDAP server to a user group.

LDAP groups can be mapped to more than one user group. Where permissions conflict, the users in that LDAP group will be given the most permissive access offered among the conflicting permissions.

For MSSPs—Users cannot be mapped to multiple domains, but if this is needed then the user should be added to a user group in the enterprise domain and then granted permissions to other domains.