as recommendation i always use ldp.exe tool to validate my setup first and be sure every setting is ok before to go to configuration on AR.
to configure plugin logs check this document https://docs.bmc.com/docs/display/public/ars81/Troubleshooting+AREA+LDAP+plug-in+issues 2016-11-08 15:11 GMT-05:00 Fawver, Dustin <[email protected]>: > ** > > I just tried that and authentication is still failing. Since I failed to > mention it the last time, we have an Active Directory environment. I have > also tried turning on the plug-in and API logs, but the authentication > attempts don't seem to be logged there. > > > Thanks! > > > --Dustin > > > ------------------------------ > *From:* Action Request System discussion list(ARSList) < > [email protected]> on behalf of andres tamayo <[email protected]> > *Sent:* Tuesday, November 8, 2016 3:06 PM > *To:* [email protected] > *Subject:* Re: AREA failures > > ** > hi there > > in User search filter field try uid=$\USER$ > > 2016-11-08 14:59 GMT-05:00 Fawver, Dustin <[email protected]>: > >> ** >> >> Greetings! >> >> >> This is probably an easy one for the vets, but my Googlefu is weak. On >> an ARS 9.1 (no ITSM) system, I have been attempting to set up AREA to >> authenticate via LDAP. Authentication is failing. I was trying to use >> LDAPS, but I have reverted back to just LDAP so that I can eliminate any >> issues regarding SSL for now. The user account that I'm using as my test >> is present in the User form with a blank password. Since I don't know if >> the listserv allows for screenshots, here are the settings that I have. >> >> >> EA tab in Server Information >> >> ---- >> >> RPC Program Number: 390695 >> >> RPC timeout: 30 >> >> Need To Sync: 300 >> >> Authenticate Unregistered Users: not checked >> >> Cross Reference Blank Password: checked >> >> Authentication Chaining Mode: AREA - ARS >> >> Group Mapping: blank >> >> Ignore Excess Groups: checked >> >> >> >> AREA LDAP Configuration >> >> ---- >> >> Host Name: ldap.etsu.edu >> >> Port Number: 389 >> >> Bind User: domain\username >> >> Bind Password: (supplied) >> >> User Secure Socket Layer: No >> >> Failover Timeout: 5 >> >> Chase Referral: No >> >> User Base: ou=FacStaff,dc=etsu,dc=edu >> >> User Search Filter: cn=$\USER$ >> >> Group Membership: None >> >> >> Nothing else is filled in on the AREA configuration form. With the User >> Base, an issue I'm going to run into with that is that user accounts are >> placed in different OUs based on their status with the university. I had >> tried a User Base of just "dc=etsu,dc=edu", but I don't know if that will >> work. >> >> >> I would appreciate any assistance with this. >> >> >> Thanks! >> >> >> --Dustin Fawver >> >> >> HelpDesk Technician >> >> East Tennessee State University >> _ARSlist: "Where the Answers Are" and have been for 20 years_ > > > _ARSlist: "Where the Answers Are" and have been for 20 years_ > _ARSlist: "Where the Answers Are" and have been for 20 years_ > _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years"
