05-10-2018 07:21 AM - edited 03-01-2019 01:32 PM
Here at LDAP provider details
Bind DN:
Base DN:
port: 389 or 636
enable ssh:
Filter: $AMAccountName=$userid (here i m mentioned my CN name , which group i need to add , getting error here)
attribute:
password:
confirm password:
timeout : 30
vendor : ms ad
i tried different ways still im getting an error at filter and if i mentioned $userid , i m getting authentication error when i m going to login with particular group.
please check below image. give me solution for this.
05-10-2018 08:13 AM - edited 05-10-2018 08:16 AM
Greetings.
The filter sAMAccountName=$userid is the string that should be there.
Generally you don't change this for MS AD.
Please run some CLI tests (pulled from https://www.cisco.com/c/en/us/support/docs/servers-unified-computing/ucs-infrastructure-ucs-manager-software/200092-UCSM-LDAP-Troubleshooting-guide.html
ucs(nxos)# test aaa server ldap <LDAP-server-IP-address> <username> <password>
Thanks,
Kirk...
05-10-2018 08:41 AM
still i m getting user authentication error. how can i resolve that.
05-10-2018 09:02 AM
What did you get when you ran:
ucs(nxos)# test aaa server ldap <LDAP-server-IP-address> <username> <password>
?
Please confirm if your bind user gets an error, and look through the rest of the troubleshooting steps listed in https://www.cisco.com/c/en/us/support/docs/servers-unified-computing/ucs-infrastructure-ucs-manager-software/200092-UCSM-LDAP-Troubleshooting-guide.html
Thanks,
Kirk...
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: