Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1618
Views
0
Helpful
3
Replies

Base DN searching bug in Identity Source Configuration from FTDv v6.4-6.6

spark.zhang
Level 1
Level 1

‎10-06-2020 01:51 AM

Hi, I think there is a bug in AD Identity objects downloading in FTDv ver6.4-6.6.

 

When I set the Base DN to includes a sub OU which like "OU=Users,DC=firepower,DC=local", and deploy the configuration, none of users or groups will be downloaded.

 

If I change the Base DN to root path which like "DC=firepower,DC=local", the users & groups has successfully downloaded.

 

Please check the attached video for details.

Labels:
2020-10-06 16-44-52.mp4
Preview file
8798 KB
0 Helpful
3 Replies 3

Mohammed al Baqari
Level 11
Level 11

‎10-06-2020 02:50 AM

Hi, are you sure the "Users" is OU not CN. Just make sure that you are
defining the right path. You can use tools (3rd party) to identify if your
path is working before applying it to FMC.

**** please remember to rate useful posts
0 Helpful

spark.zhang
Level 1
Level 1
In response to Mohammed al Baqari

‎10-06-2020 03:01 AM

Hi Mohammed,

 

Thanks for your reply. I'm sure that the DN was correct.

 

And I know that the DN of default Users object in AD is "CN=Users".  "OU=Users,DC=firepower,DC=local" is just for example.

 

In the attached example video, I used "ou=firepower,dc=firepower,dc=local" as Base DN, but it's also didn't work.

0 Helpful

Mohammed al Baqari
Level 11
Level 11
In response to spark.zhang

‎10-06-2020 04:42 AM

Understood. Have you verified the permissions. Also run a capture between
FMC and DC to see the messages in case of any error. They are in readable
format.

***** please remember to rate useful posts
0 Helpful
Review Cisco Networking for a $25 gift card
Top