Yes. I used the Windows LDP client. I still get the ldap 49 error on the
bind.
-----Original Message-----
From: Action Request System discussion list(ARSList)
[mailto:arslist@ARSLIST.ORG] On Behalf Of Jarl Groneng
Sent: Tuesday, December 28, 2004 2:46 PM
To: arslist@ARSLIST.ORG
Subject: Re: AREA LDAP w/ AD
Have you tried to connect to the LDAP server with a LDAP client?
Here is a ldap browser:
http://www-unix.mcs.anl.gov/~gawor/ldap/index.html
--
Jarl
> -----Original Message-----
> From: Action Request System discussion list(ARSList)
> [mailto:arslist@ARSLIST.ORG]On Behalf Of Kevin Lanners
> Sent: 28. desember 2004 21:30
> To: arslist@ARSLIST.ORG
> Subject: Re: AREA LDAP w/ AD
>
>
> Thanks everyone. I'm making progress. (I think)
>
> The problem seems to be with AD. I don't know much about it
> but as you saw
> in my original message the bind isn't working due to "invalid
> credentials"
> I've tested the connection through the LDP utility and I get
> the same error.
> I've verified the username and password so what permissions
> does that user
> need to have. According to the documentation it just states
> they must have
> "read permissions". I don't have access to the AD server...
> How does that
> translate to what I need to tell the AD admin?
>
> Thanks.
>
> -Kevin
>
>
>
> -----Original Message-----
> From: Action Request System discussion list(ARSList)
> [mailto:arslist@ARSLIST.ORG] On Behalf Of Luebbe, Tom
> Sent: Tuesday, December 28, 2004 12:32 PM
> To: arslist@ARSLIST.ORG
> Subject: Re: AREA LDAP w/ AD
>
>
> A problem that I just had was that the "user" that I used to
> authenticate was listed within the OU of NMR\Flordia\Users,
> but was also
> listed in the NMR\Service Accounts OU. The latter is the one
> that I had
> to use as my distinguished name.
>
> Tom Luebbe
> Nielsen Media Research
> Oldsmar, FL
>
> -----Original Message-----
> From: Action Request System discussion list(ARSList)
> [mailto:arslist@ARSLIST.ORG] On Behalf Of James Mckenzie
> Sent: Tuesday, December 28, 2004 12:59 PM
> To: arslist@ARSLIST.ORG
> Subject: Re: [ARSLIST] AREA LDAP w/ AD
>
> Kevin:
>
> Both should work according to the folks at Remedy. I think that the
> user should have the appropriate priveledges or you will get errors.
> Also, make sure the user can actually log into the AD domain
> appropriately, as passwords can and do get misread.
>
> James McKenzie
>
> -----Original Message-----
> From: Kevin Lanners
> Sent: Dec 28, 2004 9:02 AM
> To: arslist@ARSLIST.ORG
> Subject: [ARSLIST] AREA LDAP w/ AD
>
> I'm having a problem with the bind with setting up the AREA LDAP
> configuration with Active Directory.
>
> The error in the arplugin.log file is this:
> Bind:
> Invalid credentials (LDAPERR Code 49) 80090308: LdapErr:
> DSID-0C09030F,
> comment: AcceptSecurityContext error, data 525, vece
>
> I've seen conflicting methods of entering the Distinguishing
> Name in the
> Config form. One way suggests domain\username another uid=username,
> ou=xxx, o=zzz
>
> I'm waiting to hear back from the AD people about the
> structure for the
> second example, but I was wondering if anyone has had this problem, or
> could validate the DN needed for the bind.
>
> Thanks.
>
> -Kevin Lanners
>
>
>
>
> UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
> (Support: mailto:support@arslist.org)
>
>
> James McKenzie
> A Proud User of Linux!
>
>
>
>
> UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
> (Support: mailto:support@arslist.org)
>
>
>
>
> UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
> (Support: mailto:support@arslist.org)
>
>
>
> UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
> (Support: mailto:support@arslist.org)
>
UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
(Support: mailto:support@arslist.org)
UNSUBSCRIBE or access ARSlist Archives at http://www.ARSLIST.org
(Support: mailto:support@arslist.org)
Previous Topic
Index