FMC Management Center - Admin Access - Active Directory - External Authentication - users found but ...

PJR_CDF · ‎08-13-2019

I've followed this guide to setup our Active Directory as a source of external authentication for access to our Firepower Mangement Centre web GUI

https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/user_accounts_for_management_access.pdf

When testing I get the following result

User Test:

"There were no users found with this filter.
6 users were found with this filter but are invalid because their format is not supported for this appliance.
See Test Output for details."

The results of the test show successful LDAP bind

user :
attrib :
ldap_result: 0 -Success
found 6 entries...

then shows 6 user entries which are the relevant users who are members of the 2 groups I wish to allow access to.

Below that list it then also shows :

-------------
search failed
Unsupported Users The following users (6) were found with this filter but are invalid because their format is not supported for this appliance:
---------------

and then lists an unbroken list of the same 6 users DN objects

I cannot login as any of these users?

What am I missing?

PJR_CDF · ‎08-13-2019

This is now resolved - I needed to add the "sAMAccountName" value to the UI Access Attribute Mapping Section

FMC Management Center - Admin Access - Active Directory - External Authentication - users found but "invalid because their format is not supported for this device"