[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
RE: ldap_simple_bind*
I think the problem is trying to bind as "Administrator". You need to
specify the *full DN* of the Administrator entry. On our server this was
of the format "cn=Administrator,ou=Users,dc=domain,dc=net".
Hope this helps,
tm
On Thu, 16 Mar 2000, OpenLDAP wrote:
> I'm trying that right now but it doesn't work. Here's the command...
>
>
> ./ldapsearch -h 205.143.193.82 -b "ou=qmail,dc=my,dc=domain,dc=net" -D
> "Administrator" "objectClass=*" -v -W
>
> I then type in the password and I get the error
>
>
> ldap_bind: Invalid credentials
> ldap_bind: additional info: 80090308: LdapErr: DSID-0C090290, comment:
> AcceptSecurityContext error, data 525, v893
>
> Here's what I'm noticing. If 'Everyone' has read access in Active
> Directory then I don't need to login and ldapsearch works fine. However
> this could lead to potential security complications. I'm trying to do a
> bind command giving a user and a password but it doesn't work.
> ldap_simple_bind_s on NT works fine but it also natively supports NT
> authentication.
>
> Noah Campbell
> WareNet
> Web Developer
>
>
> -----Original Message-----
> From: Tom Murray [mailto:yozhik@idealab.com]
> Sent: Thursday, March 16, 2000 11:54 AM
> To: OpenLDAP
> Cc: 'openldap-software@OpenLDAP.org'
> Subject: Re: ldap_simple_bind*
>
>
> Haven't done it with the C API directly, but Perl Net::LDAP and the
> OpenLDAP command line tools worked for me--if you haven't used
> ldapsearch
> against AD yet, I'd try that first.
>
> tm
>
>
> On Thu, 16 Mar 2000, OpenLDAP wrote:
>
> > I'm trying to access active directory on NT using ldap_simple_bind*
> but
> > it does not seem to work. I'm using ldapsearch and am not writing any
> > custom code. I was wondering if anyone has had any success in doing
> > this.
> >
> > Thanks,
> >
> > Noah Campbell
> > WareNet
> > Web Developer
> >
> >
> >
>
>