active directory with call CN or OU f5 login authentication

herdi · ‎11-Sep-2023

Hi expert

i want to ask how to configure call CN or OU active directory authentication on f5

Group Name Line Order Attribute String
PJKD 1000 memberOF=CN=xxxx ,OU=Group,DC=int,DC=pk,DC=go,DC=id Administrator All Enabled

i dont have clue to configure this

Lidev · ‎13-Sep-2023

Hello herdi,

Have you read this Configuring LDAP remote authentication for Active Directory ?
It's very well documented and includes examples.

Concerning the meanings of LDAP Bindings Strings (CN, OU, DC) , take a look on this website : https://www.rlmueller.net/LDAP_Binding.htm

Regards

herdi · ‎14-Sep-2023

yes, i have configure active directory and work well on the remote directory tree when i configured on domain the user not found and when i change to lower level domain the user able to access f5, and on log i found tty unknown that mean the user directory not found

PSFletchTheTek · ‎14-Sep-2023

Hi,

So could i ask what you are trying to achieve?
Is this part of a APM policy? or are you trying to setup log into the f5 using ad/ldap external auth?

My first guess is the Attribute String you have told the f5 to query is lower than the user you are looking for. But i could be wrong! and a little context would be helpful.

herdi · ‎14-Sep-2023

this is not apm policy ? Authentication for login to f5

Lidev · ‎14-Sep-2023

OK, you can check and debug a user's LDAP access using the ldapsearch command.
if you don't have any more F5 configuration problem, don't hesitate to put the post in solved.

Regards

DevCentral

active directory with call CN or OU f5 login authentication

MFA required on DevCentral