Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

Are you an expert?    Interested in presenting at F5 AppWorld 2024?    Submit a proposal by Nov 29th!

Big-IQ remote authentication doesn't work

Serzant84
Nimbostratus
Nimbostratus

‎30-Oct-2023 09:27 - edited ‎31-Oct-2023 02:31

Hello,

I'm not able to make remote authentication over LDAP work on Big-IQ. It works perfectly well (same accounts and LDAP servers used) on Big-IP. Please see troubleshooting results down below. It looks like there are some issues with user bind template. I was trying to follow suggestions presented in following case: https://community.f5.com/t5/technical-forum/big-iq-ldap-user-bind-template/td-p/222711 , but it didn't help to resolve the issue. Kindly asking you for any advice.

Big-IP remote authentication over GUI (pcap)Big-IP remote authentication over GUI (pcap)Big-IQ remote authentication GUI configurationBig-IQ remote authentication GUI configurationBig-IQ remote authentication over GUI (pcap)Big-IQ remote authentication over GUI (pcap)Big-IQ ldapsearch parametersBig-IQ ldapsearch parametersBig-IQ authentication using ldapsearch (pcap)Big-IQ authentication using ldapsearch (pcap)Big-IQ remote authentication troubleshooting (tcpdump)Big-IQ remote authentication troubleshooting (tcpdump)

Labels:
0 Kudos
1 REPLY 1

whisperer
Nacreous
Nacreous

‎10-Nov-2023 15:46

Have you tried ldapsearch on both BIG-IP and BIG-IQ to test bind admin user to access the directory? Then you should try a user lookup on both as well. I would try those tests via advanced shell on both device types and compare any differences. You can also look at the config files and compare the admin auth and server settings. Sometimes there is a typo or something missing.

0 Kudos
Copyright © 2023 Khoros, LLC