ldap_integration
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
ldap_integration [2009/08/17 07:52] – aorth | ldap_integration [2009/08/20 08:34] – 172.26.0.166 | ||
---|---|---|---|
Line 1: | Line 1: | ||
===== LDAP Integration ===== | ===== LDAP Integration ===== | ||
- | ILRI uses an Active Directory server for user authentication, | + | ILRI uses an Active Directory server for user authentication, |
- | This was working once, using a //slightly// customized PAM module. In order to use the module several steps are needed. | + | < |
- | * Compile the code: '' | + | Enter LDAP Password: |
- | * Link the code: '' | + | ldap_bind: Invalid credentials (49) |
+ | additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece</ | ||
+ | According to the web this error means the user does not exist. | ||
- | The Active Directory server must not only be a domain controller, but must be running the global catalog service | + | < |
- | * 172.26.0.218 <-- running | + | DEC: 1317 – ERROR_NO_SUCH_USER |
- | * 172.26.0.219 | + | NOTE: Returns when username is invalid.</ |
- | * 172.26.0.220 <-- running a global catalog server (port 3268) | + | |
+ | ==== pam_cgiar_ldap.c ==== | ||
+ | |||
+ | <note warning> | ||
+ | |||
+ | This was working once, using a // | ||
+ | * Compile the code: '' | ||
+ | * Link the code: '' | ||
**pam_cgiar_ldap.c**: | **pam_cgiar_ldap.c**: | ||
Line 53: | Line 62: | ||
ldap_set_option( NULL, LDAP_OPT_PROTOCOL_VERSION, | ldap_set_option( NULL, LDAP_OPT_PROTOCOL_VERSION, | ||
ldap_set_option( NULL, LDAP_OPT_NETWORK_TIMEOUT, | ldap_set_option( NULL, LDAP_OPT_NETWORK_TIMEOUT, | ||
- | ld = ldap_init(" | + | ld = ldap_init(" |
if (ld==NULL) printf(" | if (ld==NULL) printf(" | ||
int rc; | int rc; |
ldap_integration.txt · Last modified: 2012/02/06 08:43 by aorth