SolidFire and HCI

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SolidFire and HCI

Ask a Question

Setting up LDAP on SolidFire 9.3

JMPALUCH13
‎2017-12-21 01:10 PM
8,442 Views

I am following the instuctions to setup LDAP on SolidFire but I am gettin gthe error of LDAP search failed when I test a user login. The direct bind option does not work either. I am not sure if the syntax is correct for the settings of Search Bind DN or user DN template. Anybody have any suggestions?

 

Thanks

0 Kudos
1 ACCEPTED SOLUTION

Sahana
NetApp
‎2018-01-09 12:04 AM
8,188 Views

Hi,

 

Please refer EnableLdapAuthentication on page 168 in https://library.netapp.com/ecm/ecm_get_file/ECMLP2839249

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.

View solution in original post

0 Kudos
6 REPLIES 6

elementx
NetApp
‎2017-12-24 08:12 PM
8,358 Views

Can you provide the following info:

 

a) Element OS version 

b) LDAP back end info (AD, OpenLDAP, etc.)

c) Settings you used

0 Kudos

JMPALUCH13
‎2018-01-02 10:17 AM
In response to elementx
8,258 Views

a) Element OS version --- 9.3

b) LDAP back end info (AD, OpenLDAP, etc.) ---- AD

c) Settings you used

 

 

user search filter === (objectClass=person)(sAMAccountName=%USERNAME%))

 

auth type ==== search and bind

group search type ========= AD

 

 

0 Kudos

elementx
NetApp
‎2018-01-09 12:10 AM
In response to JMPALUCH13
8,182 Views

As Sahana suggested, take a look at the AD example in the docs.

 

userSearchBaseDN and few other things you didn't mention are given in there. 

 

It's faster to try by using the API or CLI (PowerShell or Python) because you don't have to click and type a ton of times to retry.

 

0 Kudos

parisi
A-Team Tech Advisor A-Team Tech Advisor
‎2018-02-01 11:05 AM
In response to elementx
7,914 Views

There are two places where LDAP can fail - bind and search.

 

Bind is the login portion, which gives you access to search. Sounds like that's working for you.

 

Search can fail for a number of reasons:

 

- wrong search scope

- wrong base DN specified

- incorrect LDAP schema attributes specified

- object doesn't exist/isn't populated with UNIX attributes in AD

 

There's no way to resolve this issue without the details asked for in previous posts. We'd need the DN specified, the schema being used and Powershell output of the AD object being queried.

 

For example: Get-ADUser {name} -properties *

0 Kudos

elementx
NetApp
‎2020-02-29 05:28 AM
In response to elementx
5,804 Views

Video walk-through

 

https://www.youtube.com/watch?v=IY8ooGMSaOA

0 Kudos

Sahana
NetApp
‎2018-01-09 12:04 AM
8,189 Views

Hi,

 

Please refer EnableLdapAuthentication on page 168 in https://library.netapp.com/ecm/ecm_get_file/ECMLP2839249

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
0 Kudos
All Community Forums
Public