3295439 - Setting up LDAP with two DN Lookup URLs - SAP ASE

• LDAP in SAP ASE works with one DN Lookup URL, but now it looks like we need a second DN Lookup URL.
• We are not able to add the second URL search on the primary server:
  • This works for our normal users to authenticate their id via LDAP within SAP ASE:
       sp_ldapadmin 'set_dn_lookup_url', 'ldaps://xxx.xxxxx.xxx.COM:636/OU=RegularUsers,DC=xxx,DC=xxxxx,DC=com?distinguishedName?sub?cn=*' 
       sp_ldapadmin 'check_login', 'appuserid'   <-- we can see the normal user ID, but not the elevated IDs.
  • This works for elevated ID's that aren't in the above path:
       sp_ldapadmin 'set_dn_lookup_url', 'ldaps://xxx.xxxxx.xxx.COM:636/OU=TopTier,OU=Administrators,DC=xxx,DC=xxxxxx,DC=com?distinguishedName?sub?cn=*'
       sp_ldapadmin 'check_login', 'adminid'    <-- we can see the elevated ID, but not the normal IDs.
• Is it possible to set up two DN Lookup URLs on the primary LDAP server?

• SAP Adaptive Server Enterprise (ASE) 16.0
• Lightweight Directory Access Protocol (LDAP)

LDAP configuration,, DN Lookup URL, multiple DN Lookup URLs, primary LDAP server, elevated IDs, normal IDs, authentication issue, LDAP queries, distinguished name algorithm, LDAP directory server, merge LDAP queries, LDAP user groups, Administrators group, sp_ldapadmin, set_dn_lookup_url, set_secondary_dn_lookup_url , KBA , BC-SYB-ASE , Sybase ASE Database Platform (non Business Suite) , How To