Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2000
Views
0
Helpful
1
Replies

ACI - LDAP-AD integration

sarabsin
Level 1
Level 1

‎11-01-2018 10:35 AM - edited ‎03-01-2019 05:41 AM

Hello ACI expert,

Im trying to use LDAP group map to do RBAC on ACI.

The user in AD does authenticate but i am unable to logon to ACI.

I see following error message pop up when i logon to ACI using AD username.

"Denying authentication as no AD Group matched"

 

I have a feeling this related to missing LDAP group map option in the screenshot attached.

Which group map i should be specifying here?

Is it the BindDN username Group MAP (same as AD group name)?

i have some group maps defined for ACI users which are diffrent than BINDDN user.

 

 

Please advise.

 

Thanks,

 

1 person had this problem
Labels:
Preview file
48 KB
0 Helpful
1 Reply 1

zulfikhar_a
Level 1
Level 1

‎09-12-2019 12:18 AM

I had the same issue but my Group DN was Case Sensitive...After correcting the issue got solved..
eg.
I changed from "Group DN: CN=ACI_ADMIN..." to "Group DN: CN=ACI_Admin....."
0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License