Forum Discussion

Walter_Kacynski's avatar
Walter_Kacynski
Icon for Cirrostratus rankCirrostratus
Aug 06, 2014

Branching based on LDAP error messages

Is there a way to capture the error message that has been returned from an LDAP Bind call and perform a branch decision based on the content of this message?

 

In my access policy I have the LDAP Bind retry count set to a value of zero so that the fallback branch is triggered and I can log the session variables. I see reference to "session.ldap.last.errmsg" however this is never populated with the message that is returned from my ldap server.

 

Thanks.

 

2 Replies

  • kunjan's avatar
    kunjan
    Icon for Nimbostratus rankNimbostratus

    Which version you are referring? There was a related issue which fixed in 11.0 which requires retry to be > 1 for the message to set.

     

  • I am using version 11.4.1 HF3 After double checking, I had the attempts set to 3. I changed this to 1 and session.ldap.last.errmsg was correctly populated. I clearly was doing something wrong the first time that I tried this. At least it works now.