Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

LDAP - Additional User DN and no value is supplied

Sona Husakova
Sona Husakova April 13, 2017

Hi,

our customer have one AD with domain domain.com and two OU named "Users INT" and "Users EXT" in the setting Additional User DN. If he supplied to Additional User DN no value, it does not run properly. How to set value to Additional User DN?

Thanks for quick answer !

Soňa

Answer
Watch
Like Be the first to like this
1061 views

1 answer

0 votes
josh
Josh Steckler
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 13, 2017

Hi Sona,

The "Additonal User DN" field isn't to add a second OU. It puts the Additonal User DN in front of your Base DN specifically when searching for users. In your case, where you have two top level user OUs, you either need to set the base dn to the top level (DC=domain,DC=com) or set up two directories pointing to the different OUs on the same domain.

View More Comments
Sona Husakova
Sona Husakova April 13, 2017

Hi Josh,

thanks for your answer.

Customer already tried to set up two directories pointing to the different OUs on the same domain and also tried to set up base DN to the top level (DC=domain,DC=com) and "Additional User DN" had empty (here was many messages in log file for the same group etc.). Any setting does not run properly.

Another solution?

Like
josh
Josh Steckler
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 13, 2017

What is your LDAP Permissions mode set to? Try Read Only, with Local Groups if you're not using that already. This might help with "same group" errors.

Also try unchecking Advanced Settings--> Follow Referrals if checked.

You might also need to write User Object and Group Object filters so that you only bring in the necessary users and groups.

Like
Sona Husakova
Sona Husakova April 13, 2017

Hi Josh,

thank you for your quick feedback. I don't know what  is their LDAP Permission mode set to, but I will find out.

Try what you advised.

Thanks and have a nice day !

I will write.

Best Regards,

Soňa

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events