iDRAC10:无法使用目录服务帐户登录

Summary: 在某些情况下,目录服务帐户的 iDRAC10 身份验证或授权不起作用。

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

用户无法使用目录服务集成帐户登录 iDRAC10,并显示以下错误消息:

  • “RAC0212”

  • “RAC0506”
  • “相同的目录服务集成配置正在 iDRAC9 系统上正常工作。”

目录服务“Test”功能在 UserSearch 或用户授权时显示“Filter Compile Error”失败。 

      [20:17:38]: "Dial" Performed. Result: "Dial success" LDAP URL: "ldap://dcfqdn:389" 
      [20:17:38]: "Bind" Performed. Result: "Bind success" Bind User: "test.user@example.com" 
      [20:17:38]: "UserSearch" Performed. Result: "Filter Compile Error, Err: LDAP Result Code 201 "Filter Compile Error": ldap: invalid characters for escape in filter: encoding/hex: invalid byte: U+002C ','"

Cause

在 iDRAC10 中,LDAP 查询基于从上一代搜索返回的对象属性构建。如果结果在“cn”或“distinguishedName”中包含 LDAP 特殊字符,则无法正确转义它们。

有问题的字符包括 “”、“(”“)”、“.”。

/* User Search */
        "attribute_list": [
            "cn",
            "samaccountname",
            "sn",
            "userPrincipalName",
            "objectGUID",
            "objectSid",
            "sAMAccountName",
            "mail",
            "userAccountControl",
            "msDS-UserPasswordExpiryTimeComputed"
        ]

/* Group Search */
        "attribute_list": [
            "cn",
            "distinguishedName",
            "groupType",
            "objectClass",
            "objectSid",
            "sAMAccountName"
        ]

Resolution

此行为已在即将发布的 iDRAC10 固件版本 1.20.80.50 中得到解决。 

Affected Products

iDRAC10 - 1.10.xx Series, iDRAC10 - 1.20.xx Series
Article Properties
Article Number: 000352805
Article Type: Solution
Last Modified: 04 Sep 2025
Version:  2
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.