LDAP Connectivity Fails After Upgrading to SonicOS 7.3.1

After upgrading to SonicOS 7.3.1-7013, multiple customers have reported LDAP authentication failures when using certain bind passwords.  Below are the symptoms observed so far:

• LDAP server status appears active in the UI.
• LDAP connectivity test shows as successful.
• User authentication test fails.
• The system reports a successful bind as "anonymous" instead of the intended user.
• Users are unable to log in via LDAP, despite the connectivity test passing.
• The issue is reproducible with specific password lengths and patterns.

Workaround

• Avoid using LDAP bind passwords whose lengths are two less than a multiple of 16 (e.g., 14, 30, 46, 62, etc.).

• Update the LDAP bind password to a length not affected by this issue (e.g., 13, 15, 16, 20 characters).

• Note: The maximum supported LDAP bind password length is 64 characters.

• For Firewall LDAP configuration guide, please follow this: https://www.sonicwall.com/support/knowledge-base/how-to-integrate-ldap-active-directory-user-authentication/kA1VN0000000KMv0AM

Fix

• A permanent fix is planned for the upcoming 7.3.2 release. (No ETA has been announced.)
• Please continue using the workaround until the update becomes available.

Additional Information

If you need further assistance or wish to report additional cases, please contact SonicWall Technical Support via Chat by going to mysonicwall.com.