Symantec O3 SAML connector not passing attributes to application from Active Directory.

Article:TECH209580  |  Created: 2013-08-13  |  Updated: 2013-08-13  |  Article URL http://www.symantec.com/docs/TECH209580
Article Type
Technical Solution


Issue



Symantec O3 SAML connector not passing attributes to application from Active Directory.


Error



While checking the AD connection from the IC (Intelligence Canter) you receive the error (fig1).

(fig1)


Environment



O3


Solution



Please check the following;

 

1)      Make sure end user has needed attributes in the AD (active directory).

2)      Test the RO (read only) user has the correct password in the user store configuration (fig2).

(fig2)

3)      Test if the user (RO) used to read from the AD has the correct rights. A third party LDAP query tool may be needed; this will mimic the GW’s connection to the AD.

4)      Make sure your port in the user store is the same as on the AD (fig3).

(fig3)

 

The port, password, or the RO user names are the leading cause for this error. If the port is set to 3269 and the error occurs change to 636 and vice versa.

 

Re-enter the user name and password do not copy and paste doing a copy and paste can add blank spaces to the user name and password.




Article URL http://www.symantec.com/docs/TECH209580


Terms of use for this information are found in Legal Notices