Unable to load user listing from OpenLDAP directory

Document ID : KB000073071
Last Modified Date : 12/03/2018
Show Technical Document Details
Question:
We are unable to get a user listing from OpenLDAP directory services in ASAP .
We already used the right attributes in the  Attributes field for the user information. 
USER_NAME=uid,GIVEN_NAME=cn,SURNAME=cn,EMAIL=email,SECURITY_CONTEXT=dn 

 
Answer:
The ldap search which list the available users  is looking for objects of the type objectclass person 
When you create a user in OpenLDAP it needs to have the objectclass person otherwise nothing is listed

A example user would look like 
dn: uid=user1 ,ou=People,dc=testdomain,dc=com 
objectClass: top 
objectClass: posixAccount 
objectClass: shadowAccount 
objectClass: person 
cn: user1 
sn: user1 
uid: user1 
uidNumber: 9999 
gidNumber: 100 
homeDirectory: /home/user1

for groups the group must have a objectclass of  groupofnames

dn: cn=itpeople,ou=groups,dc=testdomain,dc=com 
objectclass: groupofnames 
cn: itpeople 
description: IT security group 
member: cn=user1,ou=people,dc=testdomain,dc=com