Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
cmaheu
Staff
Staff

Created on ‎11-13-2020 12:29 PM Edited on ‎01-20-2025 06:52 AM By Community Manager

Article Id 196025

Technical Tip: Unable to search subdomains in directory

Description

 
This article describes how to solve an issue when Subdomains are unable to be searched.  LDAP Login user account specified in the LDAP configuration in System -> Settings -> Authentication -> LDAP is a member of the top-level domain. 
 
Example:
LDAP login is a member of the domain Abc.com. 
 
Unable to search for user records or groups under subdomains:

Sub1.abc.com.
Sub2.abc.com.


Scope

 

FortiNAC.

Solution

 

Enable Referral Lookup in the directory model.

 
  1. Navigate to System -> Settings -> Authentication -> LDAP.
  2. Select the directory, and then Modify.
  3. Select Additional Configuration.
  4. Select Perform Lookup on Referral.
  5. Select OK to save.

 

lookupreferral.png


For more details on LDAP configuration see the Directories Configuration in the Administration Guide.

Labels:
1408
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.