Dell PowerConnect W Clearpass 100 Software 3.9 Deployment Guide - Page 195
Looking Up Sponsor Names, Troubleshooting Error Messages, LDAP Configuration
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 195 highlights
You can also verify operator authentication when you create a new LDAP server configuration using the Test Settings button on the LDAP Configuration form ( See "Creating an LDAP Server" in this chapter for a description). Looking Up Sponsor Names This option is only available if sponsor lookup has been enabled for the server on the Edit Authentication Server page. 1. To look up a sponsor, select a server name in the LDAP Server table, then click the Test Lookup link. The Test Operator Lookup area is added to the LDAP servers list. 2. In the Lookup field, enter a lookup value. This can be an exact username, or you can include wildcards.If you use wildcards, the search might return multiple values. 3. In the Search Mode field, use the drop-down list to specify whether to search for an exact match or use wildcard values. 4. (Optional) Click the Advanced check box to display detailed authorization information for the specified sponsor. 5. Click Search Directory to attempt to find sponsor names that match the lookup values, or click Cancel to cancel the test. The Authentication Test area is added above the server names to indicate the search's progress. Troubleshooting Error Messages The error messages in the following table can be used to diagnose error messages such as: "LDAP Bind failed: Invalid credentials (80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece), bind DN was: ..." Table 22 LDAP Error Messages Error Data 525 52e 530 531 532 533 701 773 775 Reason User not found Invalid credentials (password is incorrect) Not permitted to log on at this time Not permitted to log on at this workstation Password has expired Account is disabled Account has expired User must reset password User account is locked Other items to consider when troubleshooting LDAP connection problems: Verify that you are using the correct LDAP version - use ldap:// for version 2 and ldap3:// to specify LDAP version 3. Verify that you are using an SSL/TLS connection - use ldaps:// or ldap3s:// as the prefix of the Server URL. ClearPass Guest 3.9 | Deployment Guide Operator Logins | 195