Cisco Cisco AnyConnect Secure Mobility Client v2.x Technical Manual
In the authentication report, you might notice that the subject was not found in the identity store. This
means that the user name from the report does not match the Subject Name Attribute for any user in
the LDAP database. In this scenario, the value was set to uid for this attribute, which means that the
ISE looks to the uid values for the LDAP user when it attempts to find a match.
means that the user name from the report does not match the Subject Name Attribute for any user in
the LDAP database. In this scenario, the value was set to uid for this attribute, which means that the
ISE looks to the uid values for the LDAP user when it attempts to find a match.
•
The subjects and groups might not be retrieved correctly during a bind to server test. The most
probable cause of this issue is an incorrect configuration for the search bases. Remember that the
LDAP hierarchy must be specified from the leaf−to−root and dc (can consist of multiple words).
probable cause of this issue is an incorrect configuration for the search bases. Remember that the
LDAP hierarchy must be specified from the leaf−to−root and dc (can consist of multiple words).
•
Tip: In order to troubleshoot EAP authentication on the WLC side, refer to the EAP Authentication with
WLAN Controllers (WLC) Configuration Example Cisco document.
WLAN Controllers (WLC) Configuration Example Cisco document.
Updated: Jul 10, 2015
Document ID: 119149