Setting up LDAPS but some users don’t seem to get auth’d by LDAP and only by local.
The log says:
...ers/web/auth/auth.go:231:SignInPost() [I] Failed authentication attempt for lc70469 from 10.202.4.93:58442: user does not exist [uid: 0, name: lc70469]
But for some other users we have no problem.
All of the users are in the Search Base and User Filter setup in the Auth config.
I’m at a loss as to what/where to check next?
TYIA,
Chris
SOLVED
turned on traceconsole logging as suggested here
saw another line immediately before the one in my OP:
LDAP auth. failed for CN=Peter Cooper,OU=IT,DC=lc,DC=minebea,DC=local, reason: LDAP Result Code 49 “Invalid Credentials”: 80090308: LdapErr: DSID-0C090450, comment: AcceptSecurityContext error, data 531, v2580
apparently data 531 means “not permitted to logon at this workstation”. I’ve seen this before with other LDAP integrations we’ve done (which is why some of the users were able to login - their AD properties already had the LDAP server in their LogonToWorkstations.