[ERROR][sm-Ldap-00650] CSmDsLdapProvider::Search(): Wrong syntax of LDAP search filter: (uid=)
<loginResponse><authenticationResponses/><message>Authentication Failed</message><resultCode>LOGIN_FAILED</resultCode></loginResponse>
User 'unknown' is not authenticated by Policy Server.
LogMessage:ERROR:[sm-Ldap-00650] CSmDsLdapProvider::Search(): Wrong syntax of LDAP search filter: (uid=)
Header SM_USERDN : Header SM_USER :
Customer was using the following xml to log in
<loginRequest>
<binaryCreds></binaryCreds>
<userName>USERNAME</userName>
<password>PASSWORD</password>
<action>GET</action>
</loginRequest>
This was solved by changing:
<userName>USERNAME</userName>
To:
<username>USERNAME</username>
It looks as if "userName" was changed to "username" (or became case sensitive) between 12.7 and 12.8. This is reflected in a difference in the documentation:
12.7 uses userName:
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-7/configuring/ca-access-gateway-configuration/configuring-the-authentication-and-authorization-web-services.html (see "Authentication REST Interface")
12.8 uses username:
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/configuring/access-gateway-configuration/configuring-the-authentication-and-authorization-web-services.html (see "Authentication REST Interface")