Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

APM LDAP auth agent ldap bind works but search fails..

Go to solution
David_M
Cirrostratus
Cirrostratus

‎04-Jan-2021 23:10

My internal lab dc server has the domain "test.internal".

 

Here is my LDAP auth config, the connection is good and I see the groups showing up.

 

Then I am using the LDAP auth agent, and the searchDN is same as base DN but I think something in the search Filter doesn't work.

 

I have tried "sAMAccountName" in the SF and it still fails. I have added the APM log errors below as well.

 

 

APM session errors

 

/Common/ldap-xxx-demo:Common:a97a9d8d: LDAP module: ldap_simple_bind_s() successful, dn: CN=Administrator,CN=Users,DC=test,DC=internal   /Common/ldap-xxx-demo:Common:a97a9d8d: LDAP Module: Failed to make ldap_search in '' with filter '' and scope '2'. Protocol error.   /Common/ldap-xxx-demo:Common:a97a9d8d: LDAP agent: Auth (logon attempt:0): authenticate with 'bob' failed

 

 

0691T00000BIHKiQAP.png 

0691T00000BIHL1QAP.png 

0691T00000BIHL6QAP.png

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Daniel_Wolf
Nacreous
Nacreous

‎05-Jan-2021 13:29

Hi David,

 

try to provide a SearchFilter, in a format like sAMAccountName=%{session.logon.last.username}

 

KR

View solution in original post

2 REPLIES 2

Go to solution
Daniel_Wolf
Nacreous
Nacreous

‎05-Jan-2021 13:29

Hi David,

 

try to provide a SearchFilter, in a format like sAMAccountName=%{session.logon.last.username}

 

KR

Go to solution
David_M
Cirrostratus
Cirrostratus
In response to Daniel_Wolf

‎06-Jan-2021 00:12

thanks it worked . .the correct format is as below in the search filter.

 

(sAMAccountName=%{session.logon.last.username})

0 Kudos
Copyright © 2023 Khoros, LLC