SolidFire and HCI

Setting up LDAP on SolidFire 9.3

JMPALUCH13
7,456 Views

I am following the instuctions to setup LDAP on SolidFire but I am gettin gthe error of LDAP search failed when I test a user login. The direct bind option does not work either. I am not sure if the syntax is correct for the settings of Search Bind DN or user DN template. Anybody have any suggestions?

 

Thanks

1 ACCEPTED SOLUTION

Sahana
7,202 Views

Hi,

 

Please refer EnableLdapAuthentication on page 168 in https://library.netapp.com/ecm/ecm_get_file/ECMLP2839249

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

View solution in original post

6 REPLIES 6

elementx
7,372 Views

Can you provide the following info:

 

a) Element OS version 

b) LDAP back end info (AD, OpenLDAP, etc.)

c) Settings you used

JMPALUCH13
7,272 Views

a) Element OS version --- 9.3

b) LDAP back end info (AD, OpenLDAP, etc.) ---- AD

c) Settings you used

 

 

user search filter === (objectClass=person)(sAMAccountName=%USERNAME%))

 

auth type ==== search and bind

group search type ========= AD

 

 

elementx
7,196 Views

As Sahana suggested, take a look at the AD example in the docs.

 

userSearchBaseDN and few other things you didn't mention are given in there. 

 

It's faster to try by using the API or CLI (PowerShell or Python) because you don't have to click and type a ton of times to retry.

 

parisi
6,928 Views

There are two places where LDAP can fail - bind and search.

 

Bind is the login portion, which gives you access to search. Sounds like that's working for you.

 

Search can fail for a number of reasons:

 

- wrong search scope

- wrong base DN specified

- incorrect LDAP schema attributes specified

- object doesn't exist/isn't populated with UNIX attributes in AD

 

There's no way to resolve this issue without the details asked for in previous posts. We'd need the DN specified, the schema being used and Powershell output of the AD object being queried.

 

For example: Get-ADUser {name} -properties *

elementx
4,818 Views

Sahana
7,203 Views

Hi,

 

Please refer EnableLdapAuthentication on page 168 in https://library.netapp.com/ecm/ecm_get_file/ECMLP2839249

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
Public