cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Highlighted
JG44
Paper Tape
Posts: 2
Registered: ‎03-06-2018
Location: FR
Views: 442
Message 1 of 4

LDAP configuration on G8272 ENOS 8.4.6

Hello,

I am trying to set up LDAP authentication on G8272  ENOS 8.4.6;

it does not work for now;

 

Here is an extract of the G8272 configuration :

 

G8272#show run | i ldap
ldap-server mode enhanced
ldap-server host 1 10.1.1.1
ldap-server host 2 10.1.1.2
ldap-server bind-mode pre-config
ldap-server binddn dn "CN=ADMIN-BIND,OU=Service,OU=Users,OU=ACME,DC=CLOUD,DC=INTRA"
ldap-server binddn ekey "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
ldap-server basedn "DC=CLOUD,DC=INTRACME"
ldap-server attribute username "samaccountname"
ldap-server group-filter "CN=GRPADMIN,OU=UserGroup,OU=Groups,OU=ACME,DC=CLOUD,DC=INTRA"
G8272#show ldap-server
Current LDAP settings:
 LDAP server 1
   10.1.1.1:389 via MGT port
 LDAP server 2
   10.1.1.2:389 via MGT port
 LDAP server 3
    (null)
 LDAP server 4
    (null)
 LDAP Bind Mode Pre-configured Credentials
 LDAP Bind DN CN=ADMIN-BIND,OU=Service,OU=Users,OU=ACME,DC=CLOUD,DC=INTRA
 LDAP Connection method: clear text
 Retries 3, Timeout 5, LDAP server OFF, Local access disabled
 LDAP domain name DC=CLOUD,DC=INTRACME
 LDAP attributes
   user attribute samaccountname
   group attribute memberOf
   login attribute ibm-chassisRole
 LDAP group filter CN=GRPADMIN,OU=UserGroup,OU=Groups,OU=ACME,DC=CLOUD,DC=INTRA

 

I have to try to use the "debug ldap info" command to investigate this problem,

but I don't know where this debug command output is visible ;

 

Any help would be appreciated

 

thanks in advance

Lenovo Employee danielwang_SZ
Lenovo Employee
Posts: 52
Registered: ‎08-23-2016
Location: CN
Views: 286
Message 2 of 4

Re: LDAP configuration on G8272 ENOS 8.4.6

It seems that you have finished most of ldap configuration ,but not eanble ldap finally.

You need use command" ldap-server enable" to switch on the ldap feature.

If you still see issue after eanble ldap ,we recommend you open a ticket to Lenovo support to further analyze your isseu.
JG44
Paper Tape
Posts: 2
Registered: ‎03-06-2018
Location: FR
Views: 90
Message 3 of 4

Re: LDAP configuration on G8272 ENOS 8.4.6

Hello,

thanks,

but, actually, the "ldap-server enable" was entered; so, this was not the problem;

I have already opened a ticket at Lenovo Support, but, after many exchanges, we did not manage to fix it;

 

Lenovo Employee arossett
Lenovo Employee
Posts: 36
Registered: ‎08-14-2018
Location: US
Views: 71
Message 4 of 4

Re: LDAP configuration on G8272 ENOS 8.4.6

Hello JG44, if support has not been able to resolve your issue could you please let us know your current situation.  Just wondering if working through support did they make any changes, or recommendations to you? 

 

Did support open a bug, or is there still a ticket open on this?