[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problems using OpenLDAP with Active Directory

To: openldap-technical@openldap.org
Subject: Re: Problems using OpenLDAP with Active Directory
From: "Dieter Kluenter" <dieter@dkluenter.de>
Date: Fri, 26 Mar 2010 21:45:15 +0100
In-reply-to: <4BACD34A.5070100@mike-leone.com> (Mike Leone's message of "Fri, 26 Mar 2010 11:31:22 -0400")
References: <4BACD34A.5070100@mike-leone.com>
User-agent: Gnus/5.1008 (Gnus v5.10.8) XEmacs/21.5-b28 (linux)

Mike Leone <turgon@mike-leone.com> writes:

> I'm trying to configure lib-nss to use OpenLDAP against my Active
> Directory. But I seem to be having lots of problems even getting it to
> search properly. I have Samba all properly configured for AD - it's
> properly joined to the AD domain, and all seems to be working
> fine. Now I'd like to investigate using OpenLDAP to authenticate
> against AD.

[...]
> --------------------------
> ldapsearch -v -x -H ldap://10.0.0.60 "(objectClass=posixAccount)"
> sAMAccountName
[...]
> result: 1 Operations error
> text: 00000000: LdapErr: DSID-0C090627, comment: In order to perform
> this operation a successful bind must be completed on the connection.,
> data 0, vece
>
> # numResponses: 1
> ----------------------------
>
> So the question is ... why is it failing to bind?
[...]

Because you are trying to do an anonymouns bind, while a simple bind
with a distingished name is required.
man ldapsearch(1)

-Dieter

-- 
Dieter Klünter | Systemberatung
http://dkluenter.de
GPG Key ID:8EF7B6C6
53°37'09,95"N
10°08'02,42"E

Follow-Ups:
- Re: Problems using OpenLDAP with Active Directory
  - From: Mike Leone <turgon@mike-leone.com>

References:
- Problems using OpenLDAP with Active Directory
  - From: Mike Leone <turgon@mike-leone.com>

Prev by Date: Followup: using OpenLDAP with Active Directory
Next by Date: Re: Problems using OpenLDAP with Active Directory
Index(es):
- Chronological
- Thread