This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
hqtaclab
Beginner
Beginner
‎2018-02-09 05:29 PM

Unable to view LDAP Users after adding a new identity source in Authentication Manager

Jump to solution

Hi,

 

I'm running RSA Authentication Manager 8.2 and I have followed the instructions here (000033238 - How to create an external LDAP Identity Source in RSA Authentication Manager 8.1 SP1 or later ) to add the identity source (MS Active Directory) and link the system to the identity source. However, I'm unable to view/manage users under IDENTITY-->USERS-->MANAGE EXISTING in security console. Any help would be appreciated.

 

Note:

1. This is a brand new deployment. 

2. The LDAP Identity source connection was successful.

3. I did select the correct security Domain and Identity Source when running the search. (Under IDENTITY-->USERS-->MANAGE EXISTING)

 

Thanks!

Labels (1)
Labels
0 Likes
Reply
1 Solution

Accepted Solutions
hqtaclab
Beginner
Beginner
‎2018-02-12 12:12 PM

Jump to solution

Thanks for the responses. All I had to do was Change the security domain to "System Domain" and all the users showed up. Apparently, all users are initially part of the default SystemDomain when the the external Identity source is added. You can then move them as needed to any other security domains. 

View solution in original post

Reply
4 Replies
JamesMandelbaum
Employee
Employee
‎2018-02-09 06:37 PM

Jump to solution

Hello,

 

This is a three step process:

  • Add the identity store in the Operations Console
  • Enable the Identity Store in the Security Console
  • Logout and Login to the security console

 

That's all that is required to make them visible to the admin

Reply
EdwardDavis
Employee
Employee
‎2018-02-12 08:04 AM

Jump to solution

On the operations console, set the user base dn to the top level of the domain, and the user search filter to (objectclass=user)&(objectcategory=person), then check. If this works, then you can go back and 'tighten the scope down' if top level and 'person' is too large a scope.

Reply
hqtaclab
Beginner
Beginner
‎2018-02-12 12:12 PM

Jump to solution

Thanks for the responses. All I had to do was Change the security domain to "System Domain" and all the users showed up. Apparently, all users are initially part of the default SystemDomain when the the external Identity source is added. You can then move them as needed to any other security domains. 

Reply
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)
In response to hqtaclab
‎2018-02-12 02:44 PM

Jump to solution

RoSg1sDDJ6SoA1T9uu23F7CKEW9o6z560GlYwBcH4qY=‌,

 

Great news.  Thanks for reporting back.

 

Regards,

Erica

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.