Differences

This shows you the differences between two versions of the page.

--- ldap_integration [2009/08/20 08:31] – 172.26.0.166
+++ ldap_integration [2009/08/20 08:34] – 172.26.0.166
@@ Line 3: / Line 3: @@
 ILRI uses an Active Directory server for user authentication, which is primarily used for Exchange e-mail services.  Active Directory is Microsoft's proprietary version of LDAP with a little extra special sauce.  Currently users have an Active Directory username and password for their Windows-centric single sign on and e-mail, and then they have a separate account for use with the HPC.  There exists functionality in Linux to look at Active Directory for user authentication.
-<note warning>80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893
+<code>[aorth@shamba: ~]$ ldapsearch -x -H ldap://172.26.0.218:3268 -b "dc=ilri,dc=cgiard,dc=org" -D "cn=bioinfohpc,cn=users,dc=ilri,dc=cgiard,dc=org" -W ""
-HEX: 0×525 – user not found
+Enter LDAP Password:
+ldap_bind: Invalid credentials (49)
+        additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece</code>
+According to the web this error means the user does not exist.  Either I've specified the user's distinguished name incorrectly, or the account is not configured with the proper permissions to bind.
+<code>HEX: 0×525 – user not found
 DEC: 1317 – ERROR_NO_SUCH_USER (The specified account does not exist.)
-NOTE: Returns when username is invalid.</note>
+NOTE: Returns when username is invalid.</code>
 ==== pam_cgiar_ldap.c ====