+ Post New Thread
Results 1 to 8 of 8
Wireless Networks Thread, Ruckus LDAP Authentication in Technical; I've been setting up our ZoneDirector and I'm having a problem getting LDAP authentication to work. Active Directory authentication works ...
  1. #1
    altecsole's Avatar
    Join Date
    Jun 2005
    Location
    Whittington, Lancashire
    Posts
    286
    Thank Post
    40
    Thanked 36 Times in 26 Posts
    Rep Power
    26

    Ruckus LDAP Authentication

    I've been setting up our ZoneDirector and I'm having a problem getting LDAP authentication to work. Active Directory authentication works without a problem, but I'd like to setup an additional LDAP authentication method so that I can make the Zero-IT Activation page only available to members of our staff OU. I've tried setting LDAP on the Users OU, but when I test the credentials it reports 'Failed! Invalid username or password'; the same credentials work with AD authentication.

    Our FQDN is: school_name.school_county.sch.uk

    The LDAP Base DN used is: ou=Users,dc=school_name,dc=school_county,dc=sch,dc =uk

    Has anybody got AD and LDAP working together? We have Windows 2003 DCs.

    Thanks for taking the time to read and reply.

  2. #2

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    7,330
    Thank Post
    404
    Thanked 650 Times in 594 Posts
    Rep Power
    188
    Did you get this working? I'm trying to do the same thing and getting the same message.

  3. #3

    Join Date
    Nov 2009
    Posts
    54
    Thank Post
    3
    Thanked 12 Times in 12 Posts
    Rep Power
    13
    I can't speak from experience with ZoneDirector. But with working with other devices you also have to configure the Common Name so it'll know what to look for in your orginizational unit.

    cn=Users,dc=school_name,dc=school_county,dc=sch,dc =uk
    ou=Users,dc=school_name,dc=school_county,dc=sch,dc =uk

    Hope that at least leads you in the right direction.

  4. #4
    altecsole's Avatar
    Join Date
    Jun 2005
    Location
    Whittington, Lancashire
    Posts
    286
    Thank Post
    40
    Thanked 36 Times in 26 Posts
    Rep Power
    26
    Yes, I did try these combinations, but it still wouldn't work. It seems that the authentication method used isn't compatible with AD LDAP.

  5. #5

    Join Date
    Oct 2005
    Location
    East Midlands
    Posts
    747
    Thank Post
    17
    Thanked 109 Times in 69 Posts
    Rep Power
    38
    Quote Originally Posted by altecsole View Post
    Yes, I did try these combinations, but it still wouldn't work. It seems that the authentication method used isn't compatible with AD LDAP.
    Hi,

    If you have AD then can you do the authentication using AD directly and not LDAP. You would only need to tag the group attribute this way to lock down access to certain AD groups if required.

    Ash.

  6. #6
    altecsole's Avatar
    Join Date
    Jun 2005
    Location
    Whittington, Lancashire
    Posts
    286
    Thank Post
    40
    Thanked 36 Times in 26 Posts
    Rep Power
    26
    Quote Originally Posted by spc-rocket View Post
    Hi,

    If you have AD then can you do the authentication using AD directly and not LDAP. You would only need to tag the group attribute this way to lock down access to certain AD groups if required.

    Ash.
    Yes, that's what I did. I liked the idea of LDAP as you can specify the OU that you authenticate users against.

  7. #7

    Join Date
    Nov 2009
    Posts
    54
    Thank Post
    3
    Thanked 12 Times in 12 Posts
    Rep Power
    13
    The last bit of advice I can give is we had issues with LDAP authenication due to the account ldap needed to authenticate. We used administrator. Now that account needs to be in the root Users OU. Not sure if ZoneDirector has an account for that.

  8. #8

    Join Date
    Sep 2014
    Location
    bangalore
    Posts
    1
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Hi There,

    Please log in to the device check for the syslog,
    save syslog in text form, post extraction > open syslog in notepad editior++ (freeware tool) search for Auth <space> username <sapce> status=0 ( for success authentication). Auth <space> username <sapce> status=2 ( unauthentication) do a packet capture & check for LDAP packet... please let me what LDAP you are trying to use... Please drop a detail email to Harish.haridass@outlook.com I can help you to set up the authentication.. if you are using AD with LDAP

    1. Login to AD as admin
    2. Ctrl + R > run
    3. LDP.exe give you a LDAP interface for the same AD server instance.
    4. In LDP.exe click connect >put the IP address
    5. bind > put Admin user name and password.
    6. View > select the domain controler
    7. copy past the Base DN
    8. Check for the key filter see you are using <sAMAccountName>
    9. Put the attribute filter *

    let me know what happen to the test connection.
    please provide the system logs after sanititation.

    Lets close this ticket soon ....... .

    regards
    harish



SHARE:
+ Post New Thread

Similar Threads

  1. Who has Ruckus ??
    By jamin100 in forum Wireless Networks
    Replies: 35
    Last Post: 20th October 2010, 05:07 PM
  2. Replies: 17
    Last Post: 18th August 2008, 03:03 PM
  3. Moodle LDAP authentication
    By FN-GM in forum Virtual Learning Platforms
    Replies: 10
    Last Post: 25th May 2008, 12:58 PM
  4. e107 - LDAP authentication
    By alan-d in forum Web Development
    Replies: 11
    Last Post: 28th February 2007, 07:21 PM
  5. MediaWiki LDAP AD authentication
    By plexer in forum How do you do....it?
    Replies: 7
    Last Post: 22nd February 2007, 09:54 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •