Announcement

Collapse
No announcement yet.

Problem with auth against AD LDAP from samba4

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Problem with auth against AD LDAP from samba4

    Hi,

    I just set up samba4 with postfix and dovecot. Works fine, I can connect to my Mailboxes via Thunderbird from a Windows-Machine.

    I also succeeded in syncing my users from AD LDAP to OX via oxldapsync.

    What fails, is to login with that users.

    Error is:
    javax.naming.AuthenticationException: [LDAP: error code 49 - Simple Bind Failed: NT_STATUS_LOGON_FAILURE]

    My ldapauth.props:
    java.naming.provider.url=ldap://samba4:389/dc=samba4,dc=meta-level,dc=de (I also tried with java.naming.provider.url=ldap://samba4:389/)
    java.naming.security.authentication=simple
    com.sun.jndi.ldap.connect.timeout=10000
    com.sun.jndi.ldap.read.timeout=10000
    uidAttribute=sAMAccountName
    baseDN=cn=users,dc=samba4,dc=mydomain,dc=de
    ldapReturnField=sAMAccountName
    adsBind=true
    subtreeSearch=false
    searchFilter=(objectclass=person)
    bindDN=<admin-dn>
    bindDNPassword=<password>
    referral=follow
    adsBind=true
    referral=follow

    From the error, I'd suppose, simple method is not supported, but I think, Thunderbird uses it...

    I'm just stuck so any hints are appreciated.

  • #2
    Solved it with help from choeger in IRC Channel.

    ldapauth.props has to be changed:

    adsBind=false
    uidAttribute=cn
    ldapReturnField=

    With that, it works

    Comment

    Working...
    X