DanielT.69415 (Customer) asked a question.
I'm trying to validate a user but I received the following error
Note: this for LDAP integration
User not found while executing query: (&(objectclass=organizationalperson)(mail=alex.smit@okta.com))
Please review your configuration and retry validation.
Here is the current config
Select LDAP Version
LDAP Version
AD LDS
Select an LDAP version to pre-populate the fields below.
Configure LDAP
Objects
Unique Identifier Attribute
distinguishedname
The attribute on all Objects that contains a unique, immutable ID
DN Attribute
distinguishedname
The attribute on all Objects that contains a Distinguished Name
User
User Search Base
The container to perform User searches in
Object Class
organizationalperson
The ObjectClass of a User
Auxiliary Object Class
Auxiliary ObjectClasses of a User
User Object Filter
(objectclass=organizationalperson)
LDAP search filter to use when searching user objects
Account Disabled Attribute
msds-useraccountdisabled
The writeable attribute on a User used to indicate their account is disabled
Account Disabled Value
TRUE
The value that indicates an account is disabled, e.g. "TRUE"
Account Enabled Value
FALSE
The value that indicates an account is enabled, e.g. "FALSE"
Password Attribute
unicodepwd
The attribute on a User used to indicate password
Password Expiration Attribute
The attribute on a User used to indicate if password is expired
Extra User Attributes
Extra User Attribute 1
Extra User Attribute 2
Extra User Attribute 3
Extra User Attribute 4
Group
Group Search Base
The container to perform Group searches in
Group Object Class
group
The ObjectClass of a Group
Group Object Filter
(objectclass=group)
LDAP search filter to use when searching group objects
Member Attribute
member
Defines which users are members of the group
User Attribute
Leave this field blank unless your groupObject is posixGroup. Read more here
Role
Object Class
The ObjectClass of a Role
Membership Attribute
The attribute on a User that indicates membership in a Role
Validate Configuration
Before you complete setup, select the username format you would like users to use when logging into the Okta service. Then validate your configuration by entering a username and confirming that the user's properties and group memberships are properly fetched from your LDAP instance.
Okta username format
Email address
Select the username you would like users to enter to log into the Okta service. This must be in an email format.
Example username
Enter the Okta username of a user in your LDAP directory. Use the username format you have chosen above (e.g. if your username format is "UID + Configuration Suffix" enter UID@suffix.com).
Hi Guillermo,
Have you checked the prerequisites for the integration? They are covered here:
https://help.okta.com/en/prod/Content/Topics/Directory/ldap-agent-prerequisites.htm
Also, from the looks of it, you are trying to validate the example user used and not your own users. Please change that user with an actual user from your LDAP.
Hello Daniel, yes I'm checking this link now.
https://help.okta.com/en/prod/Content/Topics/Directory/ldap-agent-prerequisites.htm
I tried again once the prerequisites were fulfilled and still the same error
User not found while executing query: (&(objectclass=organizationalperson)(mail=karina.varela@okta.com))
Please review your configuration and retry validation.