Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision |
| paloaltonetworks:configuration:ldap [2020/08/31 06:30] – external edit 127.0.0.1 | paloaltonetworks:configuration:ldap [2022/11/23 12:49] (current) – external edit 127.0.0.1 |
|---|
| I found that the 'test' command for authentication profiles is dodgy. Although you can log in using ''palotestusername'' (without appending ''DOMAIN\''), I found that the test command would not work unless you append the domain like the following<code>test authentication authentication-profile AUTH_P_LDAP_Admins username domain\palotestuser password</code> | I found that the 'test' command for authentication profiles is dodgy. Although you can log in using ''palotestusername'' (without appending ''DOMAIN\''), I found that the test command would not work unless you append the domain like the following<code>test authentication authentication-profile AUTH_P_LDAP_Admins username domain\palotestuser password</code> |
| |
| If you try to authenticate and see an error about not parsing ''maxPwdAge'', check the Base DN you are using. I once left it as ''DC=domain.local,DC=local'' rather than ''DC=domain,DC=local''. Also check you are using ''sAMAccountName''. | If you try to authenticate and see an error about not parsing ''maxPwdAge'', check the Base DN you are using. I once left it as ''DC=domain.local,DC=local'' rather than ''DC=domain,DC=local''. Also check you are using ''sAMAccountName''. It could also be that the password is missing. |
| |
| |
