Adding LDAP groups to policies in the user interface (UI) of Symantec Web Gateway (SWG) doesn't work if user who is a group member wasn't added first to policy on SWG or wasn't seen by SWG browsing.
When adding a LDAP group to policy, similar error can be observed in messages log:
messages:2014-12-23T11:34:28.389232+00:00 localhost kernel: ldapMgr[5809] general protection ip:7fd8c6d1aad6 sp:7fffdc2e4248 error:0 in libc-2.12.so[7fd8c6bf3000+18a000]
This issue was addressed in Symantec Web Gateway (SWG) version 5.2.5.