Guest

Preview Tool

Cisco Bug: CSCuq53698 - LDAP user not assigned all roles or not able to log in at all

Last Modified

Sep 09, 2019

Products (1)

  • Cisco MDS 9000 Series Multilayer Switches

Known Affected Releases

6.2(9)S32

Description (partial)

Symptom:
An LDAP user trying to log in to a switch either:

1) has only 1 role of many assigned to them
2) cannot log in at all

Conditions:
This issue only occurs when a user is assigned roles using LDAP. The symptom seen depends on the order of the roles returned to the switch by the LDAP server. Symptom #1 above occurs when the last role in the list exists on the switch. When the roles does not exist and  no aaa user default-role is configured, symptom #2 occurs.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.