Cisco Cisco 5520 Wireless Controller White Paper
Configure Unified Wireless Network for Authentication Against Novell's eDirectory Database - Cisco Systems
http://kbase/paws/servlet/ViewFile/112137/novell-edirectory-00.xml?convertPaths=1#related[10/7/2010 11:21:40 AM]
As shown in the debug, a successful LDAP authentication response is delivered to the Wireless LAN controller at 192.168.3.253:
LDAP : (192.168.3.253:36802)(0x0020:0x63) DoSearch on connection
0x34367d0
LDAP : (192.168.3.253:36802)(0x0020:0x63) Search request:
base: "o=ZION"
scope:2 dereference:0 sizelimit:0 timelimit:5 attrsonly:0
filter: "(&(objectclass=user)(cn=sorr))"
attribute: "dn"
attribute: "userPassword"
Auth : Starting SEV calculation for conn 23, entry .sorr.ZION.ZION..
Auth : 1 GlobalGetSEV.
Auth : 4 GlobalGetSEV succeeded.
Auth : SEV calculation complete for conn 23, (0:0 s:ms).
LDAP : (192.168.3.253:36802)(0x0020:0x63) Sending search result entry
"cn=sorr,o=ZION" to connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0020:0x63) Sending operation result 0:"":"" to
connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) DoSearch on connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) Search request:
base: "o=ZION"
scope:2 dereference:0 sizelimit:0 timelimit:5 attrsonly:0
filter: "(&(objectclass=user)(cn=sorr))"
attribute: "dn"
attribute: "userPassword"
LDAP : (192.168.3.253:36802)(0x0021:0x63) Sending search result entry
"cn=sorr,o=ZION" to connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) Sending operation result 0:"":"" to
connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0022:0x60) DoBind on connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0022:0x60) Bind name:cn=sorr,o=ZION, version:3,
authentication:simple
Auth : [0000804d] <.sorr.ZION.ZION.> LocalLoginRequest. Error success, conn:
22.
LDAP : (192.168.3.253:36802)(0x0022:0x60) Sending operation result 0:"":"" to
connection 0x34367d0
Auth : UpdateLoginAttributesThread page 1 processed 1 login in 0 milliseconds
0x34367d0
LDAP : (192.168.3.253:36802)(0x0020:0x63) Search request:
base: "o=ZION"
scope:2 dereference:0 sizelimit:0 timelimit:5 attrsonly:0
filter: "(&(objectclass=user)(cn=sorr))"
attribute: "dn"
attribute: "userPassword"
Auth : Starting SEV calculation for conn 23, entry .sorr.ZION.ZION..
Auth : 1 GlobalGetSEV.
Auth : 4 GlobalGetSEV succeeded.
Auth : SEV calculation complete for conn 23, (0:0 s:ms).
LDAP : (192.168.3.253:36802)(0x0020:0x63) Sending search result entry
"cn=sorr,o=ZION" to connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0020:0x63) Sending operation result 0:"":"" to
connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) DoSearch on connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) Search request:
base: "o=ZION"
scope:2 dereference:0 sizelimit:0 timelimit:5 attrsonly:0
filter: "(&(objectclass=user)(cn=sorr))"
attribute: "dn"
attribute: "userPassword"
LDAP : (192.168.3.253:36802)(0x0021:0x63) Sending search result entry
"cn=sorr,o=ZION" to connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0021:0x63) Sending operation result 0:"":"" to
connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0022:0x60) DoBind on connection 0x34367d0
LDAP : (192.168.3.253:36802)(0x0022:0x60) Bind name:cn=sorr,o=ZION, version:3,
authentication:simple
Auth : [0000804d] <.sorr.ZION.ZION.> LocalLoginRequest. Error success, conn:
22.
LDAP : (192.168.3.253:36802)(0x0022:0x60) Sending operation result 0:"":"" to
connection 0x34367d0
Auth : UpdateLoginAttributesThread page 1 processed 1 login in 0 milliseconds
Note: Some of the lines in the debug output have been wrapped due to space constraints.
To ensure that the WLC is making a successful Authentication request to the eDirectory server, issue these
debug commands on the WLC:
debug aaa ldap enable
debug aaa local-auth eap method events enable