FortiAuthenticator
FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
matanaskovic
Staff
Staff
Article Id 202235
Description

This article describes how to fix the FortiAuthenticator error: Unable to import remote LDAP user 'CN=xzy,OU=yzx,DC=abc,DC=com': no username was found.

 

Ensure that 'Username attribute' in the remote LDAP server configuration or 'User attributes' in the LDAP browser window has been correctly configured.

Scope  
Solution

Importing remote LDAP users from User Management -> Remote Users -> Import -> Import users -> Select users, FortiAuthenticator gives the error: 'Unable to import remote LDAP user 'CN=xzy,OU=yzx,DC=abc,DC=com': no username was found.

 

Ensure that 'Username attribute' in the remote LDAP server configuration or 'User attributes' in the LDAP browser window has been correctly configured'.

 

matanaskovic_0-1640866729788.png

 

Checking the logs from Logging -> Log Access -> Logs, it is possible see additional information regarding the error.

 

matanaskovic_1-1640866936281.png

 

This indicates that 'Username attribute' in the remote LDAP user mapping attributes has wrong settings.

 

It is possible to verify user attributes in the window Import Remote LDAP Users -> User attributes.

 

matanaskovic_2-1640867241577.png

 

It is possible to see wrong username attribute that is setted up > Username: user13.

 

matanaskovic_3-1640867355575.png

 

Removing user13 from Username attribute, left it blank as it should be by default.

 

matanaskovic_4-1640867548605.png

 

After saving configuration, it is possible to successfully import remote LDAP users without any error.

 

matanaskovic_6-1640867769296.png

 

 

Related Article:

https://community.fortinet.com/t5/FortiAuthenticator/Technical-Tip-How-to-import-remote-LDAP-user-in...