Hi Enable com.security logs in NSA .Try logging into Clarity and see what if at all, you credentials are passed to LDAP server. You should see these kind of messages in your log file DEBUG 2009-09-30 09:53:24,897 [ApplicationServerThread] directory.LDAPDirectoryService (unknown:none:security.loginAction) ServerURL:ldaps://na.ldap.net:3269,Ldap
URL:ldaps://na.ldap.net:3269
DEBUG 2009-09-30 09:53:25,100 [ApplicationServerThread] directory.LDAPDirectoryService (unknown:none:security.loginAction) Search Filter:(sAMAccountName=jangalas)
DEBUG 2009-09-30 09:53:25,100 [ApplicationServerThread] directory.LDAPDirectoryService (unknown:none:security.loginAction) Okay, you exist in this directory server. Now let me authenticate you.
DEBUG 2009-09-30 09:53:25,100 [ApplicationServerThread] directory.LDAPDirectoryService (unknown:none:security.loginAction) DN::CN=Siva Sai Ram Jangala,OU=Cons,OU=Extranet,DC=na
DEBUG 2009-09-30 09:53:25,100 [ApplicationServerThread] directory.LDAPDirectoryService (unknown:none:security.loginAction) Distinguished Name:CN=Siva Sai Ram Jangala,OU=Cons ,OU=Extranet,DC=na,DC=ldap,DC=net Question to Clarity Gurus Will external authentication be visible in application even though Allow Non Ldap users is unchecked in NSA? I don't have any environment to test this scenario. So, asking you folks. ThanksSiva