Below are basic troubleshooting questions for Lightweight Directory Access Protocol (LDAP) that, if addressed, speed up the support process. If possible, please include the answers in your ticket to Support.
- What group(s) do not sync?
- Do the group names in Group Administration match exactly with the group names in Active Directory?
- Are users assigned group membership in Active Directory?
- Do these groups show for the user(s) in their /setup test results?
- Does this affect multiple users or only one user?
- Does the user use their Active Directory credentials?
- Note: Users must log in with their Active Directory username (username or username@domain), not their email.
- Note: You must ignore what shows as their "username" in the Government Content Management System (GCMS), as this is not what we use for authentication. Authentication processes through the LDAP service, and we sync accounts on either username or email field.
- What are the users' emails and usernames in Active Directory?
- What message does the user get when they log in with "/setup"?
- Note: Please provide screenshots with your help request.
Feedback About the Article
Let us know what was helpful or not helpful about the article below.0 comments
Please sign in to leave a comment.