Login problems with LDAP/Active Directory

Issue overview

Troubleshooting 504 server error during the AD login process

How to access log files

Additional resources

Issue overview

When you attempt to log in to the Login Enterprise appliance using an Active Directory (LDAP) account, the web page initiates a request to the appliance, which in turn executes an LDAP query against the configured directory server. If an unexpected issue occurs within the appliance, it may respond with a 504 Server Error to the web page. It's important to note that this 504 error originates from the appliance's backend service rather than directly from the directory server.

Troubleshooting 504 server error during the AD login process

If you get errors logging in to a domain, verify that Login Enterprise can talk to the domain at all. For this:

  1. Log in to Login Enterprise with the local admin account.
  2. In the Sidebar menu, scroll down and find Other > Access Control.

Frame 81.png

3. In Access Control, verify that you can save your existing AD configuration by clicking Save Changes. (You might need to make a trivial change to test saving the settings).

4. Pay attention to whether the Save Changes action completes within the “AD timeout” setting configured on that page.

5. If your AD test is taking too long, your authentication attempt will take the same amount of time. Our AD test is nothing more than test-authenticating with the provided user account.

6. Try changing to a different domain controller, in case the one you have currently selected is impaired.

How to access log files

LDAP errors are reported in the Login Enterprise container logs, in the IdentityServer log. You can access the log files in 2 ways:

  • From the Login Enterprise sidebar menu > System > Container Status > Download all log files.

Frame 82.png

  • Using SSH to log in to the appliance as the local admin user and looking at files in /loginvsi/logs.

Look for files named IdentityServer{date-time}.log. For example, IdentityServer20240215.log.

Additional resources