[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap-client connection to AD - LdapErr: DSID-0C090627,

Santosh Kumar wrote:
> Trying to query Active Directory  via command line for searching all
> Please let me know what this error refers to
> ./ldapsearch  -h -b "ou=users,DC=SFBAY,DC=tech,DC=com"  -s
> sub "objectclass=*"
> text: 00000000: LdapErr: DSID-0C090627, comment: In order to perform
> this ope
>  ration a successful bind must be completed on the connection., data 0, vece

As already said in this thread MS AD does not allow anonymous access
(except read access to some configuration data). You have to bind as a
domain user. Something like this:

> ./ldapsearch  -h -b "ou=users,DC=SFBAY,DC=tech,DC=com" -D
"cn=myaccount,ou=users,DC=SFBAY,DC=tech,DC=com" -W -s sub "objectclass=*"

Obviously you have to know the bind-DN in advance.

>  i'm  looking to extract -b option and -D from AD

I'm not sure what you mean here.

Ciao, Michael.