ACS 4.1 LDAP server is NOT accessible.

Hello

We have ACS 4.1 running. Everything seems to be (and is) works very well. But when I want to add a mapping of LDAP group I get message saying of error 'LDAP server is NOT accessible. Please check the configuration. The ldap authentications are working well, I can't add a groupmapping. Where should I start to troubleshoot?

Regards Marco

Marco,

1 have we not many groups in an LDAP or AD structure?
2 what is your Admin DN also right to query database?

ACS authentication with a generic LDAP user database

http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrDb.html#wp354562

Setting up a generic LDAP external user database

http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrDb.html#wp354805

Also, if please download the softerra LDAP browser to fetch the correct information and configure accordingle.

http://www.ldapbrowser.com/download.htm

HTH

JK

The rate of useful messages-

Tags: Cisco Security

Similar Questions

  • -name of the server is not accessible you could are not allowed. I used windows server 2003 and windows xp as a client, the error is delivered in windows xp

    -name of the server is not accessible you could are not allowed. I've used windows server 2003 server and windows xp as a client, we use workgroup

    comed in the client error when we open the Working Group

    Hello

    Questions like these are much better handled in the TechNet IT Pro Forums.

    My moderator tools cannot transfer messages on Windows forums, please re - ask you question there.

    http://social.technet.Microsoft.com/forums/en/itproxpsp/threads
    Jack-MVP Windows Networking. WWW.EZLAN.NET

  • Master/slave server is not accessible

    We have server standalone install, but then I go to system-> finder object and try to look for something: I got the following error:

    "Master/slave server is not accessible.

    This usually indicates a problem with the user identity system. Go to common Services > server > Security > identity system configuration. Re-enter the user name and password and ensure that points of user name for an account with full access to all applications of the LMS and tasks.

  • \\HOME-server is not accessible. A device attached to the system does not work.

    I use Windows 7 Professional. My network server is WHS V1.

    I have a shortcut on the desktop to \\HOME-SERVER on my W7 machine.
    All of a sudden it has stopped working.
    I get the message
    \\HOME-server is not accessible. You might not...
    A device attached to the system does not work.

    I found that the command line net view \\HOME-SEVER gives (and by typing this in an address bar of the Explorer does not work)
    31 system error has occurred.
    A device attached to the system does not work.

    And this net view \\HOME-SERVER\Music gives (but in typing this in a browser address bar works!)
    53 system error has occurred.
    The network path was not found.
    However, net view 192.168.1.99 (my server address) correctly list the share on the server names (and entering \\192.168.1.99 in Explorer address bar works).
    I did a system restore until the problem occurred first to rule out any changes to the system.
    The problem occurred again.
    This means that my Sync Center shows none of my synchronization partnerships.
    Can anyone suggest the setting or service that must be corrected to solve system error 31 problem?
    TIA
    Hello
     
    The question you have posted is related to Windows home server and would be better suited in the Windows Home Server Forum.
    Please visit the below mentioned link to find a community that will provide the support that you have requested.
    http://social.Microsoft.com/forums/en-us/category/WindowsHomeServer/
     
     
    Thank you
  • Project and server are not accessible! (175002)

    This is the error message I get whenever I try to use Dreamweaver to connect to my server:

    "Project and server are not accessible! (175002).

    I know that this subject has developed for people using Subversion. But I don't use a Subversion.

    It never happened until I made the last update to Dreamweaver.

    Please notify.

    Thank you!

    The f

    Because this is a Subversion error, I suspect that Dreamweaver tries to access the repository, and as you have not, you get the error.

    How to solve this problem is to develop the files Panel by clicking on the icon at the far right:

    Then select the icon for the remote server.

    You can then restore the files to normal size panel. This should solve the problem.

  • DNS server is not accessible

    Hello

    Here's my problem. IM using Windows XP Professional on my PC and high-speed Internet ACCESS.

    I planed one as server and gain access to the internet with another server in a LAN based network.

    I used Eternet ADSL cable to connect to my server, then use another NIC to the LAN.

    LAN network successfully established and I have granted full access to the server that I decided, and I share internet through this connection successfully, even when I ping 4.2.2.4 as main road access to the internet, it gets all of packes, which means that I have access to the internet, but I can't visit a website in my internet Explorer , means Server DNS is not yet shared!

    Server have no problem like this.

    What should I do now? Am I missing something?

    That's would be 'Card Ethernet connection to the Local network' to the DNS server, if I understand correctly.

    in some ways, I put it manually in the settings of 'Internet Protocol' of 'Connection to the Local network' in this way:

    Preferred DNS server: 4.2.2.4

    Auxiliary DNS server: [of my ADSL IP Modesm]

    and then move the problem. Now I can visit a Web site with my internet browsers.

    Thanks for help.

  • vSphere replication upgrade from 5.5 to 5.8 active server (not accessible)

    I was doing a vsphere replication update today from 5.5 to 5.8 and upgrade part seems to be okay.  After restarting the device however my vcenter reports that the server is not accessible.  I did something wrong?

    I followed the steps here. VMware vSphere replication 5.8 Documentation Center

    I searched a bit, but the only solution I found was to ensure and powering of the device and the Tower back on rather than just restart it a fix, but that has not seemed to help in my case.

    Thank you

    If anyone is curious who don't end up fixing it was the certificate as I feared.  So after all this ironed out, which was still two days of work because of how long I would have this vcenter install go.  Everything has been fixed after replacing my old self signed cert with a new.

  • Check if the user_id exists in the LDAP server

    Hello

    I was wandering if their whole approach to communicate with the LDAP server. I have a requirement where - in that I have a table of database users; I need an audit of validation against the LDAP server to check if the user exists in the LDAP server or not and if it is an active user. I was watching the DBMS_LDAP API; but don't know how to use it. Please help me with one possible approach. I use the Oracle 10 g R2 database.

    Any help is appreciated.

    Thank you

    Orton

    That DBMS_LDAP must be used, in three basic steps. To connect to the server. To authenticate with a username and password (assuming that anonymous access is not allowed). A query (by using a LDAP search) if the username exists.

    And that's essentially what the code example.

    My sample code uses a service account to open an LDAP session - as anonymous access does not have the code perform the research needed in my case. The code also uses a search based on the Security Accounts Manager (SAM) account name as search criteria - that is the username for a Windows (used by the user to authenticate to the domain NTLM) account. This can be changed to a different search criteria.

    One thing about LDAP is not simplistic. There is not a single LDAP command which will tell you if a username exists, or not. At least a simple search to do - after the connection to the server and authentication with the server.

    The code example shows most of these pieces, you will need to do your checking of user using LDAP name.

  • Desktop\SharedDocs is not accessible. You are not allowed to use this network resource. Not enough server storage is available to process this command.

    \\XXXDesktop\SharedDocs is not accessible. You are not allowed to use this network resource. Contact the administrator of this server to find out if you have the permission to access. Not enough server storage is available to process this command.
    I got the above message when I tried to access my room servert pc (XP Pro with Service Pack 3) from another pc Client (XP Home Edition with service pack 3) on a network share. I see all class document & readers who share in my network places on both PCs.
    There is no problem when I have access to XP Home Edition of XP Pro. I heard the pc installed with Acronis True Image to give to this question. But my two PCs are installed with it. Any solution.
    What I've tried so far on my pc (XP Pro):
    1. click on start, run, type regedit, and then click OK.
    2. Locate and double-click the following registry subkey:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
    3. on the right side, double-click restrictanonymous setting.
    4. make sure that that the value in the value data box is set to 0, and then click OK_ (why the default value is 0. I change it to 1, but always the same)
    5. close the registry editor.
    6. restart the computer.
    I also tried to enable the allow anonymous enumeration of SAM accounts and shares on XP Pro (default value is Disable).
    File and printer sharing exception is enabled in firewall. Don't have a firewall part 3

    The two guest account are capable of Simple file sharing in XP Pro box checked also checked.

    Hello

    Please visit the following link.

    http://answers.Microsoft.com/en-us/Windows/Forum/windows_xp-networking/three-computers-networked-fine-then-suddenly-the/3976b554-bb9c-4920-881f-38eb64480ca7

  • \\mycomputername is not accessible. you might not have permission to use this network resource. comtact the administrator of this server to find out if you have access permissions.

    \\mycomputername is not accessible. you might not have permission to use this network resource. comtact the administrator of this server to find out if you have access permissions.

    Hello

    Thank you for giving us the opportunity to help you with the query.

    I understand the inconvenience caused, now that you have me with you I would take care of that.

    I suggest you refer to the steps suggested byJack MVP (replied on August 29, 2010)

    In the next thread that speaks of a possible solution to the related question.

    PC is not accessible. You might not have permission to use this network resource. Contact the editable from this server to find out if you have access permissions.

    http://answers.Microsoft.com/en-us/Windows/Forum/Windows_7-networking/PC-is-not-accessible-you-might-not-have-permission/26a1a479-8BA5-4213-9181-02364c884937

    It will be useful.

    Let us know the status, we are happy to help you further.

  • ACS secondary server does not authenticate users through 3850 WLC

    HI - I have a question that my secondary ACS server does not authenticate users when the primary is taken offline.  My configuration is:

    3850 WLC by using the code version 03.07.00E

    ACS Version 5.6 (primary/secondary)

    The two ACS servers added to WLC (ACS-NLBP-01 (primary) / HEN-ACS-01 (secondary)), defined in the Group server (ACS_AUTH) and also the method list (ACS_AUTH).  List of the ACS_AUTH method is then applied to the SSID.

    A 'test of ACS_AUTH aaa server group' command for the two outcomes of ACS server as a result of access.  Communication IP/Radius is operational between WLC and two ACS servers.

    configuration of 3850 also attached for reference.

    Any help would be appreciated.

    Thank you

    Scott

    Please add the below listed orders and test again when you can.

    Server radius # deadtime $min$
    retransmission of radius-# 1 Server
    # Server radius-dead-criteria times 5 tent 1

    Configuring settings for all RADIUS servers

    HTH

    ~ Jousset

  • BIS blackBerry smartphones and POP server not accessible via internet

    Hey guys,.

    I think I have some 9000 "BOLD" for some users at work.

    We currently have a pop3 mail server that is not accessible via the internet. (Not webmail)

    I could use BIS to push mail for the "BOLD" and would it synchronize deleted items / sending and reading of the "BOLD" back to my mail server?

    I don't see how an email that I deleted the "bold" be synced to outlook on your laptop.

    Kudos for taking the time to read my post.

    Hi and welcome to the Forums!

    BIS, serves as an intermediary between the messaging services connected to the internet (POP, IMAP, etc.) and BB. If the server you want to interface to these BB is not connected to the internet, then BIS can not access.

    BES might work... you would have to buy and host BES in-house (after make sure you it can interface with all your internal mail server is, of course), and then facilitate the communication between your internal mail server and your business from BB. I don't know the level, but I think that the financial investment to reach BES is not negligible.

    Good luck!

  • Server & project is not accessible?

    Hello

    I've updated to your new 2015 Dreamweaver today and since I was not able to see the files on my server.

    He tells me to "set its version control settings. It is an error message I've ever seen elsewhere.

    Once I do that, I get an error "server & project is not accessible.

    I didn't change my settings since the upgrade. Why would he do that?

    Thanks for your response

    Maybe in relationship:

    Update available: Dreamweaver CC 2015 (16.0.1): Adobe Dreamweaver blog

    Using Dreamweaver | Specify the proxy server settings

  • Site Web Server not accessible via the internet

    Hello Apple community,

    I had a problem with the.app Web sites, where my site Internet (FQDN) is accessible via the network internal, but not accessible through the internet. I have port ports 80 and 443 passed on my firewall and I can see the ports open via nmap on an external connection.

    When I browse the site via http, I get redirect to 443 then it just resets and I get no error page. Internally, the page redirects to 443 and loads fine with the popup of trust initial cert (self-signed cert) that I then store to my keychain and loading the page well. I get no this pop up via an external network.

    Accessibility is accessible by 80 (green circle icon) but not of 443 for reasons I can't understand.

    I already tried to remedy the situation of the measures:

    Create a new self-signed cert to use. (same results)

    Disable ssl and disable redirection. (causes a load error in the browser)

    Wiped the OS reinstall OS X El Capitan and.app. (same results)

    Checked the port forwarding on my firewall Meraki 15 times (looks good)

    Disabled the feature IPS of the PPE on the Meraki (same results)

    Maybe I'm just on something? I hope someone out there can help.

    Thank you!

    Well, thought about it. < bangs head >.

    ATT Uverse uses port 443 for flow towards Wireless HD receivers in the House. There is a way to change the port it uses, and I'll try and do it later and post my results in case someone else is having the same problems.

    Thinks... "Why the hell ATT would use a common port for Wireless HD? SMH.

  • Modify data in the LDAP server by using Thunderbird

    Thunderbird is able to find contacts in an LDAP server. However, it would be very interesting to be able to change/add/delete contacts from the server. Otherwise, it all depends on the LDAP server administrator, and it is not very comfortable. Is there a way to do this?

    LDAP directories are usually read-only in enterprise environments. As I understand it, is not in the context of Thunderbird to be a full LDAP editor.

    Bug 86405 - LDAP address books make editable is a long-standing bug that illustrates this in detail.

    Unfortunately, as comments of bug report seems to indicate, it is an improvement of the functionality that's not going to be implemented in the main features of Thunderbird.

    A quick search for 'LDAP' in Thunderbird extensions does not seem to bring back something about either. It seems that you would have to use a separate application of LDAP as address book LDAP to have a full read/write access (assuming that your administrator allows it).

Maybe you are looking for

  • How can I get my thunderbird AddressBook is displayed in alphabetical order by family name?

    When you enter my e-mail address in the address book that they do not appear in alphabetical order of family names. What should I do so that he can do?

  • CSS3 isnot working on ff14

    #mebu_bar_btn { -webkit-transition:All 0.5s ease; -moz-transition:All 0.5s ease; -o-transition:All 0.5s ease; -webkit-transform: rotate(0deg) scale(1) skew(0deg) translate(0px); -moz-transform: rotate(0deg) scale(1) skew(0deg) translate(0px); -o-tran

  • Is there an equivalent in Firefox for the element.style ['javaScript css_to_change']?

    I'm doing a site compatible for Firefox, but the element.style ['CSS_to_change'] doesn't seem to work (example: document.getElementById('element_ID').style [' - moz - transform "] ="rotate (90deg)"; must turn the item whose id is 'element_ID' at 90 d

  • Fuse with iGroove, speakers, USB connections

    I did a lot of scanning on these boards, try to understand something, I hope someone can help me.  (I see a lot of suggestions for Jerry-rigging through the headphone jack, which is unacceptable...)  I bought a Klipsch iGroove for out sounds mp3 on d

  • Update video card/power

    Hello Ive bought a HP Pavilion Elite m9250f PC a few months back and now I'm looking to upgrade my video card/power. I'm not a gamer, enthusiast, but I enjoy playing some of the latest games. I currently have a 350W power supply if I'm not mistaken.