AD Authentication: Invalid DN syntax

Fabio_Dangelo

Hello.

Just update to 1.20 firmware to enable AD authentication.

The firewall FLEX500H is allready joined to AD and I can see it as Computer in Active Directory users and computers.

When I try to test the configuration I get the error "Invalid DN syntax".

What's wrong?

thank you

Fabio_Dangelo

Solved!

You have to be shure that user's distinguishedName is shorter than 63 char.

If not it will fails.

You can check user's distinguishedName in user advanced attributes in Active Directory User And Computer enabling "Advanced Features".

Fabio_Dangelo

any advise?

Zyxel_James

Please check on Advanced Settings, I suspect that you input the wrong information to Group Membership Attribute or something else.

Fabio_Dangelo

this?

I left the default values

YanShadowGT

Hello,

I have the same problem leaving the default values in advanced, the AD I want to connect to is Windows 2019

Fabio_Dangelo

mine is 2016.

I think the problem is this firewall (too young), not server OS.

Let's see if ZyXEL can fix it.

Fabio_Dangelo

Solved!

You have to be shure that user's distinguishedName is shorter than 63 char.

If not it will fails.

You can check user's distinguishedName in user advanced attributes in Active Directory User And Computer enabling "Advanced Features".

YanShadowGT

Hello,

It doesn't work for me, user's distinguishedName is shorter than 63 char and same error Invalid DN syntax

Fabio_Dangelo

Test is the user account with administration rights used to join the domain and used to query the DC?

Did you added the required DNS forward rule too?

YanShadowGT

Thank you for your prompt help, I found the problem, it must be made clear that it only works in the Domain Users folder, if the user is in another folder it stops working.

Everything working correctly!!!