Help
FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
edgar1
Staff
Staff

Created on ‎04-25-2025 10:57 AM

Article Id 389351

Technical Tip: Unable to find user DN that matches mail address When use LDAP profile

Description This article describes why an LDAP query receives the error 'Unable to find user DN that matches mail address.  
Scope FortiMail.
Solution

When configuring an LDAP profile for authentication, attempting an LDAP query using an email account may return the error 'Unable to find user DN that matches mail address'.

 

Captura_LDAP.PNG

 

The most common error is that the account in LDAP does not have the e-mail attribute defined. Open User LDAP properties in the Domain controller or LDAP server.

 

Captura_LDAP_1.PNGAdd the correct info about the user. For example, test@domain.com.

 

Captura_LDAP_2.PNG

 

Once e-mail information is complete on LDAP, try testing the query. Successful results will appear.

 

Captura_LDAP_3.PNG

 

After the query passes the test, it will be possible to use this profile for authentication, Webmail Quarantine access, or any purpose that requires LDAP authentication.

 

Note: Confirm that the schema in the LDAP profile has Active Directory selected, as shown in the following image:

 

Captura_LDAP_4.PNG
264
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.