[Date Prev][Date Next] [Chronological] [Thread] [Top]

Problem when using OpenLDAP query to AD server



Hi all,

 

I am testing a OpenLDAP act as LDAP proxy server using meta-backend. My back-end server contain AD servers and some OpenLDAP servers.

When this OpenLDAP server connects to other OpenLDAP servers to query data, everything is okie, I get any data as I desire. But, when I use this server query to AD server, the return code is always Operation Error. I debug this process and I get a error which AD server return to my OpenLDAP server “errorMessage: 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece” although I had configured a binddn and bindpw for my OpenLDAP server. But if I using ldapsearch, query directly to AD server and specify username and password, everything is okie L. Here is a piece of my sldapd.conf:

 

database        meta

 

suffix          "dc=abc,dc=com "

uri               "ldap://10.3.0.24/dc=abc,dc=com "

binddn          "cn=root,dc=abc,dc=com "

bindpw          123

 

suffix          "dc=xyz,dc=net"

uri             "ldap://10.3.0.26/dc=xyz,dc=net"

binddn          "cn=openldap,cn=Users,dc=xyz,dc=net"

bindpw          123

map             attribute               uid                     sAMAccountName

map                     attribute               cn                      name

map                     attribute               mail            userPrincipalName

map                     objectClass             account         user

map             attribute               *

 

Note: 10.3.0.24 is a OpenLDAP server IP and 10.3.0.26 is AD server IP.

 

I used openldap@xyz.net to query data from AD server directly and It is okie. But in this case, I got an error.

 

Any idea for my problem?

 

Thanks and best regards,