Hi everyone.
I am configuring ldap in nfa 10.0.2, but for a reason that I don't know why, I can't authenticate with my domain user.
I see on the logs SingleSignOnAuditLog2020-02-04.log ---->
2020-02-04 06:31:56, Product Code: ra, Username: mechagarreta, Remember Me: false, SSO version: 7.0, Remote Host: 172.26.13.233, Error Message: Unable to authenticate user.
This is my configuration of LDAP connection ---->
SSO Configuration/CA Network Flow Analysis:
- LDAP Authentication
- SAML2 Authentication
- Performance Center
- Single Sign-On
- Test LDAP
- Export SAML2 Service Provider Metadata
Choose an option > 1
SSO Configuration/CA Network Flow Analysis/LDAP Authentication:
Connection User: CREDES\MCA
Connection Password: ********
Search Domain: ldap://srvdomain02/OU=Usuarios,DC=credes,DC=local
Search String: (sAMAccountName={0})
Search Scope: Subtree
User Bind: Enabled
Encryption: false
Account User: {SAMAccountname}
Account User Default Clone: Usuarios
Group: <LDAPGroups><Group searchTag="memberOf" searchString="CN=CA-Guest,OU=Grupos,DC=credes,DC=l
ocal" user="{saMAccountName}" passwd="" userClone="user"/><Group searchTag="memberOf" searchString="
CN=CA-Admin,OU=Grupos,DC=credes,DC=local" user="{saMAccountName}" passwd="" userClone="admin"/></
LDAPGroups>
Krb5ConfigFile:
Status: Enabled
Timeout: 10000
When I execute "Test LDAP" see that the user is found on the domain, but the message "Clone SUCCESS" not appear.
What can I do?
Note: In other canfa but version 9.5.0 the connection ldap it's work.