This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

What the login format of LDAP user about login webpage ?

Hi All

    I have success confiure LDAP server setting which connect AD. and I could see the LDAP User could be select on [User Role].

but these user try to login webpage....it always show login fail ==>Invalid user name or password.

or

but the local user could login.

what is the format of LDAP User ?? Does the format is "ADDomain\sAMAccountName" ?? Correct ?

Because AD's CN default by lastname+firstname , so usually not loginname.

Wencheng

Tags:

  • 0

    I check /opt/netiq/npum/logs/unifid.log , it record the error message.

    I have tested different userformat....as screenshot.

    the user foremat seem auto-add "@suse15" this suse15 is the NPUM Manager's hostname

    How could I fix the format to let LDAP user login well ??

    Thanks!!

    Wencheng

  • 0 in reply to 

    I saw the previous version (3.x version), the account setting has a authentication domain which could set AD domain.

    but 4.2.1.0 seem has no such setting in account setting.

    whether this setting has been move to other location ?

    Thanks!!

    Wencheng

  • Suggested Answer

    0   in reply to 

    Hi Wencheng

    Do you have a local user Wencheng and also a AD Domain user called Wencheng  ? if so could you remove the local user

    Once you have attached an ldap server to PAM the user name should be enough

    example

    Regards

    Liam O'Dowd

  • 0 in reply to   

    Hi 

        I have remove local account (Wencheng) 

    and test LDAP User login 

    check the log , it show username@PAM-Manager's hostname in the log, it show login fail.

    Wencheng

  • 0   in reply to 

    Hi Wencheng,

    Clear the cache in your browser and try again

    Regards

    Liam  O' Dowd

  • 0 in reply to   

    Hi

       I use another workstation and login a fresh account , also let pam manager server reboot to clear all cache.

    But got the same result (invalid user account / password)

    Wencheng

  • 0 in reply to   

    HI  

         I check previous npam note...the 3.x need create a group format loginname@hostname then add the same format on the LDAP server...

        Whether 4.2 still use the format to create group on the access control's user role setting ?

    Thanks

    Wencheng

  • 0   in reply to 

    Hi Wencheng,

    I tried the same in my lab here are the screen shots. Apology's if i have made and mistakes with your name i used google translate to quickly convert

    I was able to login with the user

    I hope this will help in getting your user logged in

    Regards

    Liam O' Dowd

  • 0 in reply to   

    Hi  

         Thanks your lab & testing,

    it similar my evnironment. I think that reason should be why unifid.log show the account formart, for example my account is wencheng...and LDAP name is novell.com and the manager's host is suse15....but in the log still show wencheng@suse15 , or wencheng@novell@suse15, Ithink it the reason that I maybe mis-configure.

        Could you thanks screenshot and share shour user role name ?? my uer role is like below

      

  • 0   in reply to 

    For you ldap settings where you have set Domain name can you just set it to your domain and not eg domain.com.tw

    Like in the screen shot below