Feature #3792

Group name size limit too restrictive on Active Directory Users

Added by Francisco Leon over 5 years ago. Updated 3 months ago.

User Manager / Privileges
Target version:
Start date:
Due date:
% Done:


Estimated time:


The name size limit was changed to 16 chars, described as an OS limitation. In my case we use Active Directory and some group names are longer than this limit. Can't there be something done about it?

Associated revisions

Revision 8d4f79cd (diff)
Added by Jim Pingle 5 months ago

Only apply group size restriction to local groups. Implements #3792

Revision 399e1385 (diff)
Added by Jim Pingle about 2 months ago

Only apply group size restriction to local groups. Implements #3792

(cherry picked from commit 8d4f79cd5fdfe1c5c47f39bc0f92f63268b4593e)


#1 Updated by Chris Buechler about 5 years ago

  • Tracker changed from Bug to Feature
  • Priority changed from Normal to Low

Unix systems don't allow for as long of group names as Windows. Since they're directly put into the groups file of the system, allowing that would open up a ton of potential problems to work around.

#2 Updated by Francisco Leon about 5 years ago

Well, to tell you the truth i mistakenly thought that Active Directory support was possible in the policies itself, i.e to allow users in an Active Directory group access to a policy in order to browse the internet to some sites and restrict it to only users in that group.

If Active Directory support is just for logging in pfSense, then this feature request is not needed by myself.

Sadly, pfSense can't replace Watchguard in our company because of this.

#3 Updated by Orion Poplawski 5 months ago

Still an issue. Since this is a remote group, not sure what the issue with increasing the length would be.

#4 Updated by Jim Pingle 5 months ago

  • Assignee set to Jim Pingle
  • Target version set to 2.5.0

#5 Updated by Jim Pingle 5 months ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100

#6 Updated by Chris Linstruth 3 months ago

Tested. Group names longer that 16 characters are allowed only if the group type is Remote.

#7 Updated by Jim Pingle 3 months ago

  • Status changed from Feedback to Resolved

Also available in: Atom PDF