Hello Ryan,

The basedn in the attached log looks a bit odd. It is showing up as:

  :basedn: DC=EDC,DC=DS1,DC=USDA,DC=GOV?sAMAccountName?sub

  Please provide a screen shot of the Cloudforms Configuration/Server/Authentication page
  and try setting the "Base DN" to "DC=EDC,DC=DS1,DC=USDA,DC=GOV"
  without the "?sAMAccountName?sub"


If this does not resolve the failure you are encountering please provide the following:

Please attach the output from a ping to the LDAP Hosts you have configured.

  e.g.:
  ping oiractlpvwa13.edc.ds1.usda.gov
  ping oiractlpvwa15.edc.ds1.usda.gov
  ping oiractlpvwa16.edc.ds1.usda.gov

Please attach to this BZ file: /etc/openldap/ldap.conf

Please attach to this BZ the 3 output file generated by the following ldapsearch commands:

  ldapsearch -x -H ldaps://<your LDAP Host Name>:636 -b "<your Base DN>" -d1 > ldapsearch_output_with_basedn.txt 2>&1
  ldapsearch -x -H ldaps://<your LDAP Host Name>:636 -d1                     > ldapsearch_output_without_basedn.txt 2>&1
  ldapsearch -x -H ldaps://<your LDAP Host Name>:636 -s base -b "" -LLL "+"  > ldapsearch_output_base.txt 2>&1

  If these commands produce failures please diagnose and address the failures before proceeding.

I see you have 3 LDAP Hosts configured. Perhaps it would be best, while diagnosing the issues you are encountering, if you only configure one of them.

Please tar and attach directory /var/www/miq/vmdb/log right after a failed attempt to login to Cloudforms.

Thank you. JoeV