• When attempting to assign a role to an LDAP user, the LDAP option is missing from the NSX Manager UI. Depending on existing configurations, you may only see Add Principal Identity or OpenID Connect.
  
  

The LDAP menu item is dynamically hidden by the NSX UI if an LDAP server is either not configured or fails its background connectivity check.

• Trigger: Navigating to the User Role Assignment section automatically triggers a connection status check.
• Behavior: If the check fails, the LDAP option is automatically removed from the menu. For new configurations that have not yet passed a status check, the option will not appear.
  
  Note: Each time you navigate away from "User Role Assignment" and return to it, a connection status check will get triggered.
  

To restore the LDAP role assignment option, verify and fix the connectivity between NSX and your LDAP server.

Step 1: Verify LDAP Connection Status

1. Navigate to System > User Management > Authentication Providers > LDAP.
2. Locate your configured LDAP server and click Check Status.
   
3. Confirm if the status returns a failure message.
   
   
   

Step 2: Rectify Connection Failures

If the status check fails, troubleshoot the network connectivity, credentials, or certificate trust between NSX and the LDAP provider. For detailed configuration steps, refer to the NSX LDAP Identity Source Administration Guide.

Step 3: Confirm Restored Connectivity

1. After performing repairs, return to System > User Management > Authentication Providers > LDAP.
2. Click Check Status again to ensure the connection is successful.
   

Step 4: Access LDAP Role Assignment

1. Navigate back to System > User Management > User Role Assignment.
2. The LDAP button or the Add Role For Providers dropdown (containing LDAP) should now be visible.