Issue
How to create a successful LDAP Query on Version 3.
Product Line
EcoStruxure Access Expert
Environment
- Win 10 and above
- Version 3 Premise
- Hosted
Cause
There are no instructions on how to create an LDAP Query to bring in users from Active Directory. Schneider Electric does not normally write the queries as these are duties more geared to a LDAP person or IT person who is familiar with the structure of the AD.
Resolution
The following steps are needed to create a successful LDAP Query:
- Make sure the LDAP appliance or Service is running and that the default port 389 is opened
- From Access Expert, select the General Configuration Tab and then the LDAP Agents
- Once opened, create a new LDAP Query by entering all the necessary fields and information to connect to the AD (Active Directory)
- Enter the mapping fields in the Set Person Mapping fields
- When Finished click on the Save button that will run the query
- Select the Access Control Tab and click on the List Icon
- If the query was successful, then all the users that the LDAP Query was based on will be displayed
- If it was unsuccessful, then it would be blank.
- To troubleshoot any issues, connect to the appliance if possible and browse to the SEQ Folder
- Open up the Browse SEQ
- Look at what is displayed on the window to determine what the issue could be
- Click on the Error on the Right Side of the Window to bring up the Error Messages
- View the error and correct accordingly (for the most part it is probably the query having extra spaces)
- Once corrected, re-run the query and verify that it updated correctly by following step 6 again
