cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6872
Views
0
Helpful
4
Replies

ISE - LDAP Error - 22056 Subject not found in the applicable identity store(s)

abhisar patil
Level 1
Level 1

Dear All,

 

I am getting following error, when trying to authenticate switch via LDAP. I have attached the authentication policy.

 

22056 Subject not found in the applicable identity store(s)

 

 

Please suggest.

 

Thank You,

4 Replies 4

jan.nielsen
Level 7
Level 7

Sounds like the username is not located where you have set the ise ldap config to look for subjects

Thank you Jan.

 

It exists in AD. Captured logs on AD shows, when AD is responding for LDAP query, it is giving as success 0 saying user not found, dont know why.

 

Thank You,

Abhisar.

Maybe you are looking in the wrong OU for those users, LDAP is alot more tricky when it comes to finding users. I usually download the softerra ldap browser and connect to the ldap server, so i can check that the user is where i expect it to be in the ldap tree.

Hello,

Did you try with the username followed with fqdn?

In other words, if you domain is aqme.com and the username is user, please try with user@aqme.com.

I had the same problem while authenticating Sponsor user against a LDAP and it did the trick.

Hope this helps.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: