nifi-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mike Thomsen <>
Subject LDAP provider not recognizing the u/p combination
Date Tue, 13 Feb 2018 16:17:48 GMT
We're using AD, and I have verified that we can actually pull the users and
groups by logging in as the initial admin and checking the users. It shows
the users and the LDAP groups we assigned. Looks fine there.

When a user goes to login with their domain account, it says invalid
username and password.

So if their domain account is like this:


I expect them to be able to put "john.smith" in the username field.

These are the search settings:

Search Filter: (CN={0})
Identity Strategy: USE_USERNAME

Based on the documentation, I would expect that that would take the
username and password, put the username into the CN attribute of the search
filter and filter on the search base (exact copy of the one that is working
in the user/group search configuration).

Any suggestions on what might be wrong and/or how to debug this?



View raw message