Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
494
Views
0
Helpful
1
Replies

LDAP user query

Terry Lee
Level 1
Level 1

‎09-29-2011 05:47 AM - edited ‎03-10-2019 06:26 PM

Hi, Im currently working on LDAP configuration on ACS for integrating with AD (window 2003) by TACACS+.

but im really confuse with common LDAP configuration. After configured, Im not able to map into the database,

'LDAP NOT REACHABLE' - keep getting this message,

this is what i configured, My username is test3

User directory subtree = dc=terry, o=terry

Group Directory subtree = ou=users, o=terry

UserObjectType = test3

UserObjectClass = user

GroupObjectType = cn

GroupObjectClass = groupOfuniqueNAMEs

GroupAttributeName = uniqueMember

Admin DN = uid=test3,ou=members,ou=administrators,o=terry

im pretty sure that this isnt rite. can ani one give me a hand for this issue?

Labels:
0 Helpful
1 Reply 1

Nicolas Darchis
Cisco Employee
Cisco Employee

‎09-30-2011 12:02 AM

with AD, usually the userobjectclass is "Person".

The userobjecttyp would be "cn" if "test3" is the value of the cn field for your user.

it's very confusing why your user subtree is supposed to be "dc=terry, o=terry" and you state the the user DN doesn't contain "dc" ...

I would advise you to take an LDAP browser like Softterra's and browse your AD, you will see the attributes and types of each folder etc ... and it should be clearer for you

0 Helpful
Customers Also Viewed These Support Documents