topic Re: Problems with ext DB - LDAP to AD server in Network Access Control

Problems with ext DB - LDAP to AD server

hegarty — Sun, 10 Mar 2019 21:37:34 GMT

Hi,

We are running a Windows Server 2003 server with LDAP (funtioning properly). Im trying to get my ACS to authenticate via this server. I can see from event viewer on the the Windows server that requests are going through fine but under Reports & Activity it says that "external user not found". Heres the settings that I have specified (Ive tried tonnes of different options but none seem to work)

Any help would be greatly appreciated.

User Directory Subtree - OU=STAFF,OU=XXXXXX,OU=CIT,DC=XXXXXX,DC=ie

Group Directory Subtree - CN=Users,DC=XXXXXXX,DC=ie

UserObjectType - sAMAccountName

UserObjectClass - ObjectClass

GroupObjectType - sAMAccountName

GroupObjectClass - ObjectClass

Group Attribute Name - Member

Re: Problems with ext DB - LDAP to AD server

carenas123 — Wed, 14 Jun 2006 17:44:51 GMT

Do you see any error messages from the LDAP server on the ACS? Make sure the LDAP ports (TCP/389 or TCP/636 if using SSL) are not blocked by any device (firewall) between LDAP server and ACS.

Re: Problems with ext DB - LDAP to AD server

viveksantuka — Tue, 04 Jul 2006 04:00:39 GMT

The error is in UserObjectClass. It should be person.

Best way to correct the settings is to use a ldap browser like softerra and connect to AD. Check the identifiers used and put them in ACS.