Symptom
- LDAP in SAP ASE works with one DN Lookup URL, but now it looks like we need a second DN Lookup URL.
- We are not able to add the second URL search on the primary server:
- This works for our normal users to authenticate their id via LDAP within SAP ASE:
sp_ldapadmin 'set_dn_lookup_url', 'ldaps://xxx.xxxxx.xxx.COM:636/OU=RegularUsers,DC=xxx,DC=xxxxx,DC=com?distinguishedName?sub?cn=*'
sp_ldapadmin 'check_login', 'appuserid' <-- we can see the normal user ID, but not the elevated IDs. - This works for elevated ID's that aren't in the above path:
sp_ldapadmin 'set_dn_lookup_url', 'ldaps://xxx.xxxxx.xxx.COM:636/OU=TopTier,OU=Administrators,DC=xxx,DC=xxxxxx,DC=com?distinguishedName?sub?cn=*'
sp_ldapadmin 'check_login', 'adminid' <-- we can see the elevated ID, but not the normal IDs.
- This works for our normal users to authenticate their id via LDAP within SAP ASE:
- Is it possible to set up two DN Lookup URLs on the primary LDAP server?
Read more...
Environment
- SAP Adaptive Server Enterprise (ASE) 16.0
- Lightweight Directory Access Protocol (LDAP)
Product
SAP Adaptive Server Enterprise 16.0
Keywords
KBA , BC-SYB-ASE , Sybase ASE Database Platform (non Business Suite) , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.