This post is more than 5 years old
20 Posts
0
134096
September 7th, 2011 17:00
Configure Directory Services
I am having difficulty configuring Directory Services on vFoglight 6.5.1. I have read some of the forums, and while they have been helpful, I am still unable to manage accounts via LDAP.
Account is anonymous false
Distinguished name of the service account Hugh Jass
Password ****
LDAP query prefix CN=
LDAP query suffix ,OU=Accounts,DC=dixie,DC=wrecked,DC=com
The scope(s) to search for groups DC=dixie,DC=wrecked,DC=com
The second group namespace Edit....
The third group namespace Edit....
The LDAP context for user searching OU=Accounts,DC=dixie,DC=wrecked,DC=com
Role attribute ID name
Is Role attribute a DN false
User alias attribute ID sAMAcountName
User attribute ID to search for groups member
Match on User DN false
I'm sure it is something simple, but I have not found what it is. I have changed the 'Is Role attribute a DN' to true, and it doesn't improve anything. Service account and password are current and correct; in fact, vFoglight can connect to the LDAP server without issue.....I just can't get anyone to successfully login using their domain credentials.
larry.murphy-qu
8 Posts
0
September 7th, 2011 17:00
A couple of things that you can try:
1: The service account name format: CN=hugh jass,OU=Accounts,DC=dixie,DC=wrecked.DC=com or whatever the string is for that user
2: take the query suffix to the top of the domain: ,DC=dixie,DC=wrecked.DC=com
3: take the user searching string to the top just like you have done for group searching: DC=dixie,DC-wrecked,DC=com
Once you confirm that you can connect to the top of the domain tree, start restricting the user & group searches.
Hope this helps!
-Murph
pgadgil
94 Posts
0
September 7th, 2011 17:00
Hello dwightkschrute ,
There are couple of settings that need to be changed from what you have but before that I will need to take a look at your AD environment. Could you please create a support case and I will work with you to get it working.
Regards