This section only applies when you are using Identity Manager 4.8.5 or later versions.
Groups that are members of a parent group or contain child groups are referred to as nested groups. If you are using groups to manage permissions, a nested group will allow members to inherit permissions from the parent group.
When a user launches the Identity Applications Dashboard, the application searches for the user's group membership attribute and displays the permissions granted through direct group assignments as well as the permissions inherited by virtue of the nested group. Since nested group search is enabled by default, Identity Applications users may experience a delay in loading the Dashboard and Applications pages. If you want to disable the default nested group search and have it only check for direct group assignments, add the following property to the ism-configuration.properties file and restart Tomcat:
DirectoryService/realms/jndi/params/USE_NESTED_GROUPS=false