Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Somashekara_Hanumant
Staff & Editor
Staff & Editor

Created on ‎04-07-2025 02:10 AM Edited on ‎09-01-2025 11:09 PM By Community Manager

Article Id 386586

Technical Tip: Unable to add/select remote LDAP users, all the users are greyed out

Description This article describes why the FortiGate administrator is unable to select/add Remote LDAP users.
Scope FortiGate, LDAP.
Solution

When the LDAP server is configured as below on FortiGate, then it is unable to select/add Remote LDAP users.

 

ldap_1.JPG

 

Try to add a Remote user under User & Authentication -> User Definition -> Create New ->  Remote LDAP User -> select 'LDAP' -> Next -> All users are greyed out.

 

ldap-2.JPG

 

 To resolve this, modify the CNID to 'sAMAccountName' in the LDAP configuration instead of 'Administrator'.

 

ldap_4.JPG

 

ldap_3.JPG

 

Note: The users cannot be re-added if already listed on the firewall, under USER Definition.


Related document: 

Users
557
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.