RE: ldapsearch to Active Directory

["Ron Wahler" <ron@rovingplanet.com>]

 

Going to answery my own question on Active Directory.

 

Here is the solution.  Active Directory will take the AdminID of rontest@rp-eng.com  

 

 

/usr/bin/ldapsearch -LLL -x -h 10.0.0.25 -p 389 -D "rontest@rp-eng.com" -w rontest -b "dc=rp-eng,dc=com" "(SamAccountName=rontest)"

 

 

-----Original Message-----
From: Ron Wahler
Sent: Wednesday, March 31, 2004 10:29 AM
To: openldap-software@OpenLDAP.org
Subject: ldapsearch to Active Directory

 

When I try to query a user account without the Administrator for the Admin-ID can can’t get results even when the user I am using

Has been given Administrator privliges in Active Directory.   How can I do it ? can anyone help ?

 

Thanks,

Ron.

 

This query works :

 

/usr/bin/ldapsearch -LLL -x -h 10.0.0.25 -p 389 -D "cn=Administrator,cn=users,dc=rp-eng,dc=com" -w password99 -b "dc=rp-eng,dc=com" "(SamAccountName=rontest)"

 

 

This query fails : even though rontest was give administrative rights in Active Directory.

 

 

/usr/bin/ldapsearch -LLL -x -h 10.0.0.25 -p 389 -D "cn=rontest,cn=users,dc=rp-eng,dc=com" -w rontest -b "dc=rp-eng,dc=com" "(SamAccountName=rontest)"

 

 

ldap_bind: Invalid credentials

        additional info: 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893

[root@mars rlm_ldap]#