Cisco Support Community
Community Member

ldap debuging


i'm still working my way through this solution so i now have another query

i've a number of wsa c670s and an SMA 1070 and i'm implementing secure LDAP authentication for users on the C670s

my issues is that the SMA has the option to run an LDAP DEBUG log but the C670s don't

when i test my LDAP authentication i can see 4 names retrieved (though it doesn't show the names)

if i set a policy with authentication for a defined user i get the authentication prompts but they fail

if i look at the LDAP DEBUG log on the SMA, its empty

here's my questions

- can anyone point to a troubleshooting guide for LDAP    

  (i've set up my log file as per    

- why is the LDAP DEBUG log option not available on the c670s    

- is the option on the SMA on apply to LDAP on that box and not the wsas?

thanks to anyone responding, greatly appreciated

Cisco Employee

Re: ldap debuging

Hello there,

Can you clarify your intentions?  Are you trying to use LDAP to authenticate users to surf the internet?  Or are you trying to use LDAP to authenticate the admins of the appliance?


Community Member

Re: ldap debuging


once again thanks for getting in touch

my intention is to authenticate users using the wsa to surf the internet

i've moved passed this by reconfiguring the log subscriptions

i'm now trying to resolve issues with a big-ip-ltm load balancing to the ironports

thanks again

CreatePlease to create content