Why can"t I login using my local credentials when an LDAP server is active?

0 Likes

Problem:

Why can"t I login using my local credentials when an LDAP server is active?

Resolution:

If your local and LDAP usernames are the same but the passwords are different then you will be unable to login using the local credentials while a LDAP server is active, even if Mixed Mode Authentication in enabled for that user. This behaviour is as designed. If a user is found on an LDAP server database then they can only login using LDAP credentials. SCTM will only query the local database if the user is not found on the LDAP server database.

The following paragraph come from the SilkCentral Administration Module Help document:

"When no LDAP server is defined, users will only be able to login with local credentials. If at least one LDAP server is active and a user account is set to use mixed mode authentication, each defined LDAP server is checked to determine if a user (with specific username and password) can be authenticated. If the user is unknown on all defined LDAP servers, then local database authentication is attempted. Access is denied when a user is also unknown based on local credentials. If a user is known on an LDAP server, but the credentials are incorrect, access is denied."

From this paragraph it can be seen that because the user exists on the LDAP server database then SCTM will flag an incorrect login. It is only if the user is not found on the LDAP server that the local database will be queried.

Old KB# 25091
Comment List
Anonymous
Related Discussions
Recommended