Wireless Access

Reply
Occasional Contributor II

Version 8 inter grated with LDAP

i can not make an authenticated between aruba ctr and LDAP with below config 

version 8

 

aaa authentication-server ldap "LDAP server"
host 192.168.100.1
admin-dn "hqadmin@beshaysteel.com"
admin-passwd <removed>
allow-cleartext
base-dn "dc=beshaysteel,dc=com"
preferred-conn-type clear-text
!
aaa authentication-server ldap "LDAP server 2"
host 192.168.100.2
admin-dn "cn=HQAuth,ou=DomainAdmins,ou=HQ,ou=BeshaySteel,dc=beshaysteel,dc=com"
admin-passwd <removed>
allow-cleartext
base-dn "ou=HQ,ou=Beshay-Steel,dc=beshayst

Guru Elite

Re: Version 8 inter grated with LDAP

Did you use something like LDAP browser to double-check your ldap settings?


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Occasional Contributor II

Re: Version 8 inter grated with LDAP

no. i have not but i have many systmes that integrated with ldpa like fortigate .

 

this the new configure

 


aaa authentication-server ldap "LDAP server"
host 192.168.100.1
admin-dn "CN=HQAuth,CN=Users,DC=beshaysteel,DC=com"
admin-passwd <removed>
allow-cleartext
base-dn "dc=beshaysteel,dc=com"
preferred-conn-type clear-text
!
aaa authentication-server ldap "LDAP server 2"
host 192.168.100.2
admin-dn "CN=HQAuth,CN=Users,DC=beshaysteel,DC=com"
admin-passwd <removed>
allow-cleartext
base-dn "dc=beshaysteel,dc=com"
preferred-conn-type clear-text
!

Guru Elite

Re: Version 8 inter grated with LDAP

If this is active directory you are connecting to, you need to add a single parameter:

 

key-attribute sAMAccountName


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Occasional Contributor II

Re: Version 8 inter grated with LDAP

yes this is AD, this  parameters was appera in GUI normaly in the server paramters 

Occasional Contributor II

Re: Version 8 inter grated with LDAP

is this logs appera the issue ?

 

 

May 7 16:22:26 authmgr[5546]: <199802> <5546> <ERRS> |authmgr| ldapclient.c, ldap_client_bind_admin_cb:922: LDAP Server LDAP server: Error in Binding Admin to server: Timeout or Network error
May 7 16:22:28 dot1x-proc:1[5993]: <199802> <5993> <ERRS> |dot1x-proc:1| ldapclient.c, ldap_client_bind_admin_cb:922: LDAP Server LDAP server: Error in Binding Admin to server: Timeout or Network error
May 7 16:22:28 dot1x-proc:2[5996]: <199802> <5996> <ERRS> |dot1x-proc:2| ldapclient.c, ldap_client_bind_admin_cb:922: LDAP Server LDAP server: Error in Binding Admin to server: Timeout or Network error

Highlighted
Guru Elite

Re: Version 8 inter grated with LDAP

See if you can ping the LDAP server from the controller.  It doesn't seem to be answering.  Does your LDAP server answer on port 636 or 389?


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Occasional Contributor II

Re: Version 8 inter grated with LDAP

i can ping the ldap "all in same subnet" , i try using 2 ports and as result, authenicated failed

Guru Elite

Re: Version 8 inter grated with LDAP

I would use an LDAP diagnostic tool like ldapsearch or Softerra LDAP browser to ensure that your parameters and port are correct.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Occasional Contributor II

Re: Version 8 inter grated with LDAP

did you think that the issue in server not cntr.

 

the aruba configuration is same as fortigate configuration regarding ldap . fortigate work but cnt no

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: