There is no option to add specific Active Directory users and organization units inside policy rules, when using Identity Awareness blade on SMB appliances
||Identity Awareness, Small and Medium Business Appliances, Branch Office Appliances, Ruggedized Appliances
|Platform / Model
||600, 700, 1100, 1200R, 1400
- There's no Identity Awareness option to add Active Directory (AD) users/ Organization Units inside the source column in policy rules.
On a locally managed SMB appliances, the only option existing is to add AD groups, rather than specific users - the Users tab on the left contains only internal users, and not from AD.
This feature is by design. This is the current design for locally managed SMB appliances.
The principle behind this design is that the best practice is using Active Directory groups rather than specific users, as this makes future maintenance easier.
This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.