Cisco Community
English
Register
Great changes are coming to Cisco Community in July. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

2408
Views
10
Helpful
9
Replies
Augustgood
Beginner
Beginner
‎12-11-2013 04:30 AM
‎12-11-2013 04:30 AM

24008 User not found in LDAP server - ACS 5.4

Hi

If i configure LDAP in acs 5.4 when the client (existent in domain) attempt to access, i receive error :

24008  User not found in LDAP Server

If i configure AD in ACS 5.4 the client access.

any ideas ?

Labels:
1 person had this problem
0 Helpful
1 ACCEPTED SOLUTION

Accepted Solutions
edwjames
Participant
Participant
In response to Augustgood
‎12-11-2013 08:02 AM
‎12-11-2013 08:02 AM

Nicoles,

Could you change the group search base to:

dc=tp2,dc=it

What does test configuration give you as a result?

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed

View solution in original post

9 REPLIES 9
edwjames
Participant
Participant
‎12-11-2013 04:55 AM
‎12-11-2013 04:55 AM

Hi Nicoles,

Please share the directory organization tab in the LDAP config on the ACS as a screenshot.

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
0 Helpful
Augustgood
Beginner
Beginner
In response to edwjames
‎12-11-2013 05:14 AM
‎12-11-2013 05:14 AM

this is a test .

0 Helpful
edwjames
Participant
Participant
In response to Augustgood
‎12-11-2013 07:06 AM
‎12-11-2013 07:06 AM

Hi Nicoles,

Could you remove the stripping setting?

Next, change subject name attribute to "sAMAccountName".

Group object Class to :group

Group map attribute to :member

Could you share the output of test configuration?

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
0 Helpful
camejia
Participant
Participant
In response to Augustgood
‎12-11-2013 07:08 AM
‎12-11-2013 07:08 AM

Hello nicoles29879,

Can you change the LDAP configuration on your ACS to:

Subject Name Attribute: cn

Group Object Class: Top

Group Map Attribute: member

Please test the authentication again. Also, are you using a Windows AD DB as your LDAP server? If not, which specific LDAP server are you using?

Regards,

Carlos.

0 Helpful
Augustgood
Beginner
Beginner
In response to camejia
‎12-11-2013 07:44 AM
‎12-11-2013 07:44 AM

don't work...

I use windows 2003 server AD, this is my config tested

0 Helpful
Augustgood
Beginner
Beginner
In response to Augustgood
‎12-11-2013 07:45 AM
‎12-11-2013 07:45 AM

and this

0 Helpful
edwjames
Participant
Participant
In response to Augustgood
‎12-11-2013 08:02 AM
‎12-11-2013 08:02 AM

Nicoles,

Could you change the group search base to:

dc=tp2,dc=it

What does test configuration give you as a result?

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
Augustgood
Beginner
Beginner
In response to edwjames
‎12-11-2013 08:17 AM
‎12-11-2013 08:17 AM

THANK YOU ....

THIS S A WORKING CONFIGURATION

0 Helpful
purubrain18
Beginner
Beginner
In response to Augustgood
‎08-09-2015 10:51 AM
‎08-09-2015 10:51 AM

Thanks 

LDAP is working, above screen shot is correct

 

Regards

Puru

 

0 Helpful
Latest Contents
Earn $100! Interview with Cisco on Network Risk, Compliance ...
Created by S Nath on 06-27-2022 01:56 PM
0
0
0
0
Are you responsible for risk management, compliance management and auditing of a network?    If so, we’d like to speak with you to learn your current processes of enforcing compliance and managing risk to help us develop services that will ... view more
Converting Cisco Secure Endpoint Connectors from Audit to Pr...
Created by Sohaib Ahmed on 06-23-2022 05:19 PM
0
0
0
0
Once you've expanded Cisco Secure Endpoint connector deployment to about 50% of your licensed count (check out this article that shows you how to do that), it's time to put those connectors to action i.e. convert them to Protect from Audit mode for vari... view more
🧦💚 Tell us about your ZTNA journey in exchange for a pair ...
Created by betswang on 06-23-2022 03:05 PM
0
15
0
15
  Hello! I’m Betsy, UX Researcher, on the Cisco+ Secure Connect Now team. Nice to meet you all .We have a short survey to learn about your Zero Trust Network Access (ZTNA) journey. Whether you have, plan to, or have not implemented a ... view more
Cisco ASA Access-list ACL using network object
Created by Meddane on 06-23-2022 06:59 AM
0
0
0
0
  A set of interface access rules can cause the Cisco Adaptive Security Appliance to permit or deny a designated host to access another particular host with a specific network application (service). When there is only one client, one host and one se... view more
How To: Cisco ISE Captive Portals with Aruba Wireless
Created by ahollifield on 06-22-2022 06:23 PM
4
10
4
10
How To: Cisco ISE Captive Portals with Aruba Wireless Authors: Adam Hollifield, Brad Johnson IntroductionPrerequisitesMinimum RequirementsComponents UsedConfigurationAruba Wireless ControllerWLAN CreationAuthentication ConfigurationRole & Policy Confi... view more
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Video
+ Project Story
Find more resources
Discussions
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Related support document topics
Recognize Your Peers
Spotlight Award Nomination
Content for Community-Ad

ISE Webinars

Miss a previous ISE webinar?
Never miss one again!

CiscoISE on YouTube