Hi,
I have a strange problem with our Siteminder installation.
We use a AD as UserStore.
One UserStore is for Student with effective lookup:
(&(objectclass=User)(employeeType=e)(cn=ID-From-Login)) we call it AD-STUDENTS
And one for teachers with effective lookup: (&(objectclass=User)(employeeType=p)(cn=ID-From-Login)) we call it AD-TEACHERS
And then we use a SSO Authscheme :
Library: smauthntlm
UserLookup: (&(cn=%{UID})(|(employeeType=p)(employeeType=e)))
Then we create a domain, that allow both students and teachers, and protect it with out SSO Authscheme.
Allowing both Teachers and Students, in that order.
Now I assumed that if a Student access the domain he/she should be found in the AD-STUDENTS, but since AD-TEACHERS is before AD-STUDENTS they get the account in AD-TEACHERS. I think this is a bug ( We run 12.8.3), but I have never seen anything like this before.
Is there anyone that knows if we just could upgrade to solve the problem.
I will make a support case, but so far I have had big problems with getting help in reasonable time, and had to send tons of log files.
So, please help.
------------------------------
[JobTitle]
[CompanyName]
[State]
------------------------------