2012 Active Directory Integration2012 Active Directory Integrationhttps://www.klaros-testmanagement.com/de/c/message_boards/find_thread?p_l_id=11703&threadId=4738182024-03-29T02:15:47Z2024-03-29T02:15:47ZRE: 2012 Active Directory IntegrationTorsten Stolpmannhttps://www.klaros-testmanagement.com/de/c/message_boards/find_message?p_l_id=11703&messageId=4739032019-07-19T09:08:22Z2019-07-19T09:08:04ZAs a working solution may be of interest to others as well, here is a working configuration for AD 2012.Torsten Stolpmann2019-07-19T09:08:04ZRE: 2012 Active Directory IntegrationTorsten Stolpmannhttps://www.klaros-testmanagement.com/de/c/message_boards/find_message?p_l_id=11703&messageId=4738422019-07-16T21:47:15Z2019-07-16T21:15:00ZHello Aditya,<br /><br />0 entries found without further errors typically indicates that your connection parameters and credentials are ok, but the interface is unable to retrieve a list of the potential users specified by you parameters.<br /><br />This means, your settings for the following entries needs to be checked first:<br /><br /><span style="font-family: courier new, courier, monospace">User Context DN, User Object Classes, <span style="font-family: arial, helvetica, sans-serif">and </span>User Name Attribute.<br /></span><br />Basically Klaros will try to retrieve all <span style="font-family: courier new, courier, monospace">User Name Attributes </span>of entries in <span style="font-family: courier new, courier, monospace">User Context DN matching User Object Classes. </span>In some AD setups it may be required to enable followReferrals as well for the lookup to succeed.<br /><br />Your typical <span style="font-family: courier new, courier, monospace">User Name Attribute</span> in AD will be cn, while <span style="font-family: courier new, courier, monospace">User Search Attribute <span style="font-family: arial, helvetica, sans-serif">will probably be <span style="font-family: courier new, courier, monospace">samAccountName</span>.<br /><br />A bind operation for authentication against Active Directory consists of two steps:<br /><br />First a user search is done using the above lookup against your </span>User Search Attribute<span style="font-family: arial, helvetica, sans-serif"> (<span style="font-family: courier new, courier, monospace">samAccountName) which retrieves the matching User Name Attribute (cn)<span style="font-family: arial, helvetica, sans-serif"> to use in building the DN of the user being authenticated.</span><br /></span></span></span>The user DN to use in the bind is then build from concatenating <span style="font-family: courier new, courier, monospace">${UserDN Prefix},<span style="font-family: arial, helvetica, sans-serif">Retrieved value of</span> ${User Name Attribute} and ${UserDN Suffix}.</span><br /><br />Hope this helps, if you are still stuck, please post a screendump of your settings here or send it to support@verit.de if you prefer this and we can have a detailed look.<br /><br />Kind regards,<br /><br />TorstenTorsten Stolpmann2019-07-16T21:15:00Z2012 Active Directory IntegrationAditya Vijjanhttps://www.klaros-testmanagement.com/de/c/message_boards/find_message?p_l_id=11703&messageId=4738172019-07-16T15:50:19Z2019-07-16T15:50:19ZI am trying to integrate 2012 AD with klaros but having some issues.<br />There is no error displayed but test ldap access showing 0 entries found. Is there any specific settings for AD.Aditya Vijjan2019-07-16T15:50:19Z