Hi Prashant,
One quick suggestion based on the symptoms you describe:
Have you updated the basic-user-principal-attribute ?
If you did, make sure you did NOT change this setting in the main part of the configuration. That needs to stay as uid.
To change the attribute used for user lookup in a federated directory, you need to add a new basic-user-principal-attribute setting under the stanza for the federated directory.
Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
------------------------------
Original Message:
Sent: Tue November 24, 2020 08:16 AM
From: Prashant Narkhede
Subject: ISAM - Federated Active Directory
Hi,
Are there any logs that are related to Federated User Registry?
Even though basic-user-support set to yes, I cannot see AD users from Policy Administration.
Also, once I set basic-user-support to yes, Policy Administration does not show the ISAM LDAP Users.
------------------------------
Prashant Narkhede
------------------------------