cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
519
Views
0
Helpful
2
Replies

Problems with ext DB - LDAP to AD server

hegarty
Beginner
Beginner

Hi,

We are running a Windows Server 2003 server with LDAP (funtioning properly). Im trying to get my ACS to authenticate via this server. I can see from event viewer on the the Windows server that requests are going through fine but under Reports & Activity it says that "external user not found". Heres the settings that I have specified (Ive tried tonnes of different options but none seem to work)

Any help would be greatly appreciated.

User Directory Subtree - OU=STAFF,OU=XXXXXX,OU=CIT,DC=XXXXXX,DC=ie

Group Directory Subtree - CN=Users,DC=XXXXXXX,DC=ie

UserObjectType - sAMAccountName

UserObjectClass - ObjectClass

GroupObjectType - sAMAccountName

GroupObjectClass - ObjectClass

Group Attribute Name - Member

2 Replies 2

carenas123
Contributor
Contributor

Do you see any error messages from the LDAP server on the ACS? Make sure the LDAP ports (TCP/389 or TCP/636 if using SSL) are not blocked by any device (firewall) between LDAP server and ACS.

viveksantuka
Beginner
Beginner

The error is in UserObjectClass. It should be person.

Best way to correct the settings is to use a ldap browser like softerra and connect to AD. Check the identifiers used and put them in ACS.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers