I am trying to restrict Airgroup printers to specific AD groups. Currently, I can limit printer access using the "Shared Locations" field and "Shared With field, but whenever I use the "Shared Groups" field and specify an AD group it doesn't appear to be working. I have confirmed under Authorization Attributes for users, CPPM is pulling AD groups. Our Clearpass setup is configured to work with a few other domains since multiple agencies use this one system. I tried specifying the group by itself, domain\group name, but still the same result. I am skimming through the manual and Airhead threads to see if anything specific needs to be configured on AD for this to work, but so far I haven't come across anything.
I've read a few threads that mention setting up user roles and basing the assignment of roles on AD groups, but before I go that route I wanted to see if specifying AD groups on shared devices will work.
ClearPass Policy Manager 6.11.3