2012 Active Directory Integration - Klaros Test Management - Forum - Klaros-Testmanagement
2012 Active Directory Integration
Aditya Vijjan, geändert vor 4 Jahren.
2012 Active Directory Integration
Youngling Beiträge: 2 Beitrittsdatum: 16.07.19 Neueste Beiträge
I am trying to integrate 2012 AD with klaros but having some issues.
There is no error displayed but test ldap access showing 0 entries found. Is there any specific settings for AD.
There is no error displayed but test ldap access showing 0 entries found. Is there any specific settings for AD.
Torsten Stolpmann, geändert vor 4 Jahren.
RE: 2012 Active Directory Integration (Antwort)
Jedi Council Member Beiträge: 755 Beitrittsdatum: 12.02.09 Neueste Beiträge
Hello Aditya,
0 entries found without further errors typically indicates that your connection parameters and credentials are ok, but the interface is unable to retrieve a list of the potential users specified by you parameters.
This means, your settings for the following entries needs to be checked first:
User Context DN, User Object Classes, and User Name Attribute.
Basically Klaros will try to retrieve all User Name Attributes of entries in User Context DN matching User Object Classes. In some AD setups it may be required to enable followReferrals as well for the lookup to succeed.
Your typical User Name Attribute in AD will be cn, while User Search Attribute will probably be samAccountName.
A bind operation for authentication against Active Directory consists of two steps:
First a user search is done using the above lookup against your User Search Attribute (samAccountName) which retrieves the matching User Name Attribute (cn) to use in building the DN of the user being authenticated.
The user DN to use in the bind is then build from concatenating ${UserDN Prefix},Retrieved value of ${User Name Attribute} and ${UserDN Suffix}.
Hope this helps, if you are still stuck, please post a screendump of your settings here or send it to support@verit.de if you prefer this and we can have a detailed look.
Kind regards,
Torsten
0 entries found without further errors typically indicates that your connection parameters and credentials are ok, but the interface is unable to retrieve a list of the potential users specified by you parameters.
This means, your settings for the following entries needs to be checked first:
User Context DN, User Object Classes, and User Name Attribute.
Basically Klaros will try to retrieve all User Name Attributes of entries in User Context DN matching User Object Classes. In some AD setups it may be required to enable followReferrals as well for the lookup to succeed.
Your typical User Name Attribute in AD will be cn, while User Search Attribute will probably be samAccountName.
A bind operation for authentication against Active Directory consists of two steps:
First a user search is done using the above lookup against your User Search Attribute (samAccountName) which retrieves the matching User Name Attribute (cn) to use in building the DN of the user being authenticated.
The user DN to use in the bind is then build from concatenating ${UserDN Prefix},Retrieved value of ${User Name Attribute} and ${UserDN Suffix}.
Hope this helps, if you are still stuck, please post a screendump of your settings here or send it to support@verit.de if you prefer this and we can have a detailed look.
Kind regards,
Torsten
Torsten Stolpmann, geändert vor 4 Jahren.
RE: 2012 Active Directory Integration (Antwort)
Jedi Council Member Beiträge: 755 Beitrittsdatum: 12.02.09 Neueste Beiträge
As a working solution may be of interest to others as well, here is a working configuration for AD 2012.