Forum Discussion
F50S rSeries LDAP Authentication
Hello.
I'm trying to configure a F50S rSeries appliance for LDAP authentication using Microsoft Active Directory, but unfortunately after following the documentation (https://my.f5.com/manage/s/article/K000138401) I'm not able to login using my AD account.
Here're my configuration:
LDAP Configuration:
Base DN: DC=XYZ,DC=COM
Bind: CN=LDAPUser,DC=XYZ,DC=COM; Password: 12345
Connect Timeout: 60 seconds
Read Timeout: 120 seconds
Idle Timeout: 0 seconds
LDAP Version: 3
Chase Referrals: False
TLS: Off
Authenticate with Active Directory: True
Unix Attributes: True
I have a Server Group for 2 Domain Controllers that I have.
dc01.xyz.com (LDAP over TCP: 389)
dc02.xyz.com (LDAP over TCP: 389)
The appliance network connectivity towards Domain Controllers over LDAP ports are OK.
In Active Directory I configured gidNumber and uiNumber for a user and gidNumber for a group. The user is a member of WAFAdministrators group.
Set-ADUser -Identity j.doe -Replace @{'uidNumber'=5001; 'gidNumber'=9000}
Set-ADGroup -Identity "Domain Users" -Replace @{'gidNumber'=100}
Set-ADGroup -Identity "WAFAdministrators" -Replace @{'gidNumber'=9000}
I also set the Remote GID in Roles section for admin as 9000.
Any idea?
- HosseinAmeryNimbostratus
The LDAP authentication is working fine, and the configuration is exactly as it should be. However, you must use the exact casing for the username when logging in (e.g., J.Doe, j.doe, J.doe).
- waqas34Cirrus
It sounds like you're referring to LDAP (Lightweight Directory Access Protocol) authentication for a system called F50S rSeries, possibly related to a replay or tutorial. F50S rSeries may refer to a specific series of hardware or software, and LDAP authentication is commonly used for managing user access to a system based on directory services like Microsoft Active Directory or OpenLDAP.
If you're dealing with a system that integrates LDAP for authentication and you're facing issues or looking for guidance, here's a general approach:
Common Steps for LDAP Authentication Setup:
- Configure LDAP Server:
- Ensure your LDAP server (e.g., Active Directory, OpenLDAP) is running and accessible.
- You will need the server's IP address, domain name, and relevant credentials for setup.
- Enable LDAP Authentication on F50S rSeries:
- Access the settings or configuration interface for your F50S rSeries device or software.
- Find the authentication or security settings.
- Look for options to enable or configure LDAP as an authentication method.
- Provide LDAP Server Details:
- Input the LDAP server's hostname, port, and security settings (such as using SSL).
- You may need to enter the base DN (Distinguished Name) and search filters to define how users are queried.
- Configure LDAP Server:
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com