AD user fails to login on Satellite WebUI with error (LdapFluff::Generic::UnauthenticatedException): Could not bind to ActiveDirectory user

Solution Verified - Updated

Environment

  • Red Hat Satellite 6.x

Issue

  • AD user fails to login on Satellite WebUI with error (LdapFluff::Generic::UnauthenticatedException): Could not bind to ActiveDirectory user

Resolution

  • Modify the Account Username from example.com\username to NETBIOS\username by navigating to below path.

    Satellite WebUI >> Administer >> Authentication Sources >> Click on AD authentication source >> Account Tab >> Account Username

  • If domain name needs to be specified then username@example.com format can be used.

For more KB articles/solutions related to Red Hat Satellite 6.x Authentication Issues, please refer to the following:

Red Hat Satellite Consolidated Troubleshooting Article for Red Hat Satellite 6.x Authentication Issues

Root Cause

  • NETBIOS name is not specified in the Account Username field.
  • In place of NETBIOS name, domain name is specified with wrong syntax.

Diagnostic Steps

  • Check /var/log/foreman/production.log for below error while trying to login with AD user.

     2022-01-31T13:34:36 [I|app|dfvfb3fgb] Backtrace for 'Error during authentication against 'TEST Domain Controller'' error (LdapFluff::Generic::UnauthenticatedException): Could not bind to ActiveDirectory user example.com\username
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/ldap_fluff-0.5.0/lib/ldap_fluff/generic.rb:76:in `service_bind'
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/ldap_fluff-0.5.0/lib/ldap_fluff/generic.rb:21:in `user_exists?'
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/ldap_fluff-0.5.0/lib/ldap_fluff/ldap_fluff.rb:63:in `block in valid_user?'
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/ldap_fluff-0.5.0/lib/ldap_fluff/ldap_fluff.rb:94:in `block in instrument'
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/activesupport-6.0.3.7/lib/active_support/notifications.rb:180:in `block in instrument'
f7abb384 | /opt/theforeman/tfm/root/usr/share/gems/gems/activesupport-6.0.3.7/lib/active_support/notifications/instrumenter.rb:24:in
SBR
Product(s)
Components
Category
Tags

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.