How to identify and configure Base-DN of LDAP Server

How to identify and configure Base-DN of LDAP Server

29624
Created On 01/13/20 23:13 PM - Last Modified 01/15/20 03:22 AM


Objective
How to identify and configure Base-DN on LDAP server profile?

Environment
  • Any PAN-OS
  • Active Directory server


Procedure
When you try to set up Ldap server,  need to set up Base-DN . Base-DN information is in Active directory .
  1. Login to AD server
  2. Navigate to Server Manager > Tools > Active Directory Users and Computers 
         User-added image
  1. Right click on your domain name,  View > check mark the Advanced Features option. This will display the attribute editor tab of Step 5. :
        User-added image
  1.   Right click on Users> Properties :
      User-added image
  1. Open the Attribute Editor > Click on DistinguishedName:      
       User-added image
  1.   Copy the distinguishedName Value:
  User-added image
  1. Login to firewall GUI:  Device > Server Profiles > ldap > Base-DN:
User-added image


Additional Information
The information of Windows was provided using 2012 server R2. 

Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/kCSArticleDetail?id=kA10g000000POBz&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FkCSArticleDetail

Attachments