Active IQ Unified Manager Discussions

OCUM 6.1 & AD 2008 R2

yuriy
5,666 Views

Trying to use AD authentication in OCUM 6.1 with no success:

Unable to communicate with the authentication server because the authentication server is not configured properly. Verify your authentication server configuration.

How AD should be configured to allow OCUM authenticate?

8 REPLIES 8

MICRONASEAL
5,666 Views

We are having the same issues. Have been working with our AD team and have not come up with a solution. Would like to know if this is a bug as this type of integration is usually fairly simple to setup.

marz
5,666 Views

Suggest the Active Directory Bind Account be a user that can authenticate only (Bind) to AD, not a domain admin or other user with elevated privileges.

Administrator Name can be one of three forms listed below.

Authentication Service:  Active Directory

     Administrator Name: <domain>\<bind_account>   --or--   <bind_account>@<domain>   --or--   <bind_account_distinguishedname>

     Password: ********

     Base Distinguished Name:  DC=<domain>,DC=<domain>,DC=<company>,DC=<com>

Servers

  At least one AD server must be entered here.  IP Address or FQDN

Test Authentication

User Name:  <user_name>

Password:  ********

The above tests should pass with a user_name of an AD account.

MICRONASEAL
5,666 Views

We have it setup just like the instructions call for and have tried different combinations of the instructions as well.

I just tried it with a non admin account as well and we get the same error:

"Unable to communicate with the authentication server because the authentication server is not configured properly. Verify your authentication server configuration."

kryan
5,666 Views

Try disabling the nested groups user search.

Step 1: Start at the "Enable Remote Authentication" screen.

Step 2: Enable the advanced settings by selecting the "Others" authentication service name and fill in the bind and base names and password.

Step 3: Note the text in the Member text box ( member:1.2.840.113556.1.4.1941: ).

Step 4: Edit that field so that the member line has only the text "member".

Step 5: Click save and perform a test authentication.

Thanks,

Kevin

MICRONASEAL
5,666 Views

Kevin,

That worked like a champ.

Thanks!

Andy

TWIELGOS2
5,666 Views

May have worked for Andy, but it didn't work for me.

I had this working under DFM 6, prior to the 6.1 upgrade.

mh_sh_team
4,869 Views

Having the same problem with OCUM 6.3RC1.

 

Any ideas?

JGPSHNTAP
4,461 Views

Same issue as above.. Just putting member in didn't work.. Any other suggestions

 

running 6.3rc

Public