cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1272
Views
5
Helpful
2
Replies

Configure authentication LDAP using sAMAccountName and userPrincipalName at the same time

daviddeleye
Level 1
Level 1

Hi,

 

I would like to configure authentication for our anyconnect connection using ldap to check the credentials against our AD. I can configure to use either sAMAccountName or userPrincipalName but not both at the same time.

 

ldap-naming-attribute sAMAccountName

ldap-naming-attribute userPrincipalName

 

gives following output

aa-server TEST (inside) host 1.1.1.1
 ldap-naming-attribute userPrincipalName

 

So in short, is it possible to check both?

 

2 Replies 2

You can't specify both under single aaa-server group. But try to use
sAMAccountName and enable strip-group and strip-real option. This should
make both DNS and Group logins working.

Hi Mohamed,

 

Thank you for the swift response.

It is unclear what DNS and group login are.

Could you explain what you mean by this?

 

 

Thank you in advance!

Review Cisco Networking for a $25 gift card