If you are using CRBP(Cross Ref Blank password)= True, and you have mainly AR groups (not specific AD groups) which you need to use, make sure in AREA LDAP configuration form, in the License Mask and in the Write license (under Defaults and Mapping attributes to user information), you don't have any value mentioned over there.
If it is blank, it is going to pick the licenses from User form, and you should get token as per mentioned in user form. If there is no specific reason to use chaining mode, it can be set to off, as by default it is set to first go to ARS and then to AREA. If you are using any sso plugin, then in those cases chaining is usually helpful and enabled. By default, the way it works with chaining disabled is, first it go to user form, it will check if that user exists in user form, and if that user have blank password in user form (with CRBP=true) and then it will authenticate via the password of AD . Hope this helps. Regards Kapil B. -----Original Message----- From: Action Request System discussion list(ARSList) [mailto:[email protected]] On Behalf Of Abdullah Baytops Sent: Friday, March 29, 2013 2:28 AM To: [email protected] Subject: Re: AREA LDAP 8.0 Configuration Issue We have the following: 1. No check box in the "Allow Guest Users" 2. No check box in the "Authenticate Unregistered Users" 3. Authentication has AREA - ARS V/R Abdul Baytops ________________________________________ From: Action Request System discussion list(ARSList) [[email protected]] on behalf of Andrew Belis [[email protected]] Sent: Thursday, March 28, 2013 4:33 PM To: [email protected] Subject: Re: AREA LDAP 8.0 Configuration Issue Under Configuration tab do you have "Allow Guest Users" enabled by chance? What are your settings for "Authenticate Unregistered Users" under EA tab as well as the "Authentication Chaining Mode" set to? ____________________________________________________________________________ ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years" ____________________________________________________________________________ ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years" _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org "Where the Answers Are, and have been for 20 years"
