Authentication using LDAP/AD

cancel
Showing results for 
Search instead for 
Did you mean: 

Authentication using LDAP/AD

Not applicable

Hello,

I'm trying to get LDAP authentication working using Active directory. I have created an LDAP server profile, an Authentication Profile and Group Mapping settings profile. When I'm setting up the Group mappings I can go in and see the entire directory tree and pick groups so I know that it is connecting the the AD server and pulling information. However, in the Authentication Profile, if I try to pick users for the allow list, it doesn't find anything from the AD only local users. I have tried creating a firewall Administrator using the LDAP profile, and cannot login. When I look at the system log, it says "authentication profile not found for user".

I'm obviously missing something somewhere, but can't figure it out.

Thanks,

Kenton

17 REPLIES 17

Yes the profile is there. I'll call support.

Thanks,

Kenton

Kenton,

did you get this working?  im having the same issues.

No I haven't. I haven't called support yet because the real thing I'm trying to get to work is the AD authentication for the VPN and there is a bug in that. So I figured I'd just wait until they fix the bug. Hopefully that wil be relatively soon.

Kenton

Having similiar issues at a customer.

@smithkopel - Did you manage to get this issue resolved?

Thanks

No I haven't worked on it any more. I intend to upgrade to a newer version of the OS in a couple of weeks and hopefully that will fix the root of the problem.

Kenton

The CN should equal a real user such as administrator  not samaccountname.

I  have had this similar issue and I figured out that, the user ID which you are using to authenticate to the AD, should be listed in PA locally as an administrator. Then the AD can be used to authenticate this account. As per my SE, they have submitted an enhancement request and will update you guys once I get to know anything.

Hope this helps

I was having this same problem and switched to Kerberos (assuming it's an AD environment?).  Worked like a charm.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!