Description
This article describe some issue faced when importing users using Remote User Sync Rule after upgrading FortiAuthenticator to v6.6.3.
Scope
FortiAuthenticator v6.6.3.
Solution
After upgrading to FortiAuthenticator v6.6.3, users with special characters like brackets, (), <>, in their attributes cannot be imported through a remote user sync rule, with this error:
Raw Logs on FortiAuthenticator:
Log Details
Log Record Detail
ID 6923
Timestamp Fri Jul 05 16:09:25 2025
Level information
Action
Status
Source IP
Message Cannot add user from LDAP server forti.lab because of this error: Enter a valid value. This value may contain only English letters, international characters, numbers, and the following characters: & . + - _ , @
User
Log Type
Type Id 30303
Name LDAP User Sync
Sub Category System
Category Event
Description Logs events from a scheduled syncing of remote LDAP users
Remote users can be imported manually, but when trying to enable One-Time Password (OTP) authentication, it is not possible with the same error:
Enter a valid value. This value may contain only English letters, international characters, numbers, and the following characters: & . + - _ , @@
Solution:
Upgrade to FortiAuthenticator v6.6.4 to resolve this problem.
Related document:
