[LDAP] Import Directory Group Error objectGuid Empty

Hi, please update OME because available updates may fix LDAP import issues. And double check your LDAP server and configured attributes. I found a github link it could be helpful for you 

"ome_domain_user_groups unable to import new directory groups" https://dell.to/3CqVfYN

"ome_user and Import Directory Group" https://dell.to/3CiSYPl

take a look at this video for nothing to miss it "Lightweight Directory Access Protocol integration in Dell EMC OpenManage" https://dell.to/3WUgrQF Enterprise Console

Hi, thank you, but I have updated to the latest version of OME,Version 3.10.1 (Build 51), in step add Ldap, I've connect success to server ldap. ( 

This error occurs at step Import Directory Group. So, I will double check  ldap server and configured attributes. If you have any other solution please let me know.

Many thanks,

Hi @corntus,

The error might be (most likely) to be related to LDAP objectGUID configuration attributes. 

Do update us the outcome after you have checked. 

Hi, I can't find objectGUID  attributes in ldap server (openldap). may be it doesn't have this attribute.

Open LDAP Authentication provider default: entryuuid

Hmm, I saw it freeipa uses the attribute ipauniqueID https://dell.to/3quiyhK this is might causing the situation. I would try to import it after trying to change attribute.

I can't change attribute,do you have any solution?

Hi @corntus,

I tried to find a related article on OpenLDAP but none appeared in the search engine Google. We do not have any knowledge on OpenLDAP that could help your issue. GUID is a global unique ID that is used is AD. Perhaps, try adding a line NULL in objectGUID attribute on one of your user attributes to see if it helps. Again, to mention, we do not have any knowledge on OpenLDAP, hence unsure how you can configure similar to Microsoft AD. 

Hi. thank you.

My openldap works fine in other tools including idrac dell server, but openmanage doesn't work. 

So, I wonder, Type of Directory "LDAP" of OME, but can't use 

sorry to hear you're still having trouble with it. I'm not sure what we are missing really. I think there are might be some compatibility issues. I can recommend you contact software support team. They can do further analysis.

Hello, I will try to ask the related team if this is something that can be updated.

May be this ObjectGuid not support for LDAP (FREEI PA), or support team DELL for OME can update script fix this issue ? 

Hi, Do you have an answer to this problem?

Hello for now could you kindly look at the mismatch we found and see if it helps? (Please see the attached) https://dell.to/3NPMSNi

Also please send your service tag to Dell_Erman by private message as your service tag is a private property.

I test connection with "Attribute of Group Membership: member" successful. 
When I set "Attribute of Group Membership: Uniquemember". I received the notice...

Hi, I did import group successful. 

But I must add admin group for user login. if the admin group is not added, the user cannot login. 

So all users if i want them to login OME i have to give them admin rights on my ldap server.

As such, they are also in the admin group on ldap.

why does OME allow login when user must belong to admin group on lđap server and not another group?