Login
    Contenu x
    LDAP user synchronization issues
    • 30 Dec 2024
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    LDAP user synchronization issues

    • Mis à jour le 30 Dec 2024
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    Description

    LDAP user synchronization does not work.

    Possible causes

    • The bind DN user account is locked.
    • The synchronization profile is disabled.
    • The user ID is not mapped in the synchronization profile.
    • The filter settings are incorrect.
    • A network problem occurred.

    To troubleshoot LDAP user synchronization, consult the specific tracing files (see  Configuring tracing for LDAP User Synchronization). Furthermore, consult the audit records logged (see  Auditing). Audit records are helpful to understand why a certain operation failed, e.g. when deleting a user account failed.

    Solutions

    • The user account is locked.

      Verify that the bind DN and bind password are correct in the synchronization profile. If the user account is locked on the LDAP server, synchronization from user accounts on the LDAP server to the OneSpan Authentication Server Appliance is not possible.

    • The synchronization profile is disabled.

      Verify that the Enable checkbox is selected in the synchronization profile. If the synchronization profile is not enabled, synchronization is impossible and a respective message is logged.

    • User ID is not mapped in the synchronization profile.

      At least one attribute must always be mapped to the OneSpan Authentication Server Appliance user ID property. If the user ID property has no mapping entry in the synchronization profile, synchronization is impossible and an error is logged.

    • The filter settings are incorrect or conflicting.

      Correct filter settings result in records for synchronized user accounts. If the filter settings are incorrect or conflicting, no user accounts are found for synchronization. Therefore nothing will be synchronized and no tracing records will be produced. Missing tracing records for synchronized user accounts indicates that the filter settings should be verified.

    • A network problem occurred.

      If there is a network problem, e.g. due to the firewall configuration, synchronization is impossible and a connection error is logged.

    Additional references

    For more information about tracing and auditing, refer to the OneSpan Authentication Server Appliance Product Guide and the OneSpan Authentication Server Appliance Administrator Reference.

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle