We use the Active Directory integration to allow our AD users to log in to myDBR but we have run into a problem.
Users can sometimes not log in to myDBR and they are removed from local groups in myDBR so they loose access to reports.
We have a master group in our AD and within that we have a Admin group and several user groups. The groups get imported into myDBR and they are visible under Groups and if we test the Active Directory connection we get a list of about 1500 users. All good!
If we create a local myDBR group (not imported from AD) and give that group permissions to reports and add AD user to that group it works for a while and then the AD user is missing from that group.
A similar thing happens for some users in the AD myDBR admin group. They can log in for a while and then all of a sudden they can't anymore but they are still listed as a member of the admin group.
I tested to use the Synchronize function to import users from the AD but it gives no feedback and only imports four users.
Any ideas on what could be wrong?