Sweet-o-Cheeto's It works!!! Thank you all for the help...
testco\tuser1 with the filter set to sAMAccountName=$\USER$ worked! all others failed. Thanks again and happy Friday! Kevin P. ** I've seen cases where you need to use the testco\tuser1 format as well. Is the error in the log after the ldap_simple_bind for the tuser1 or after the user you are trying to log in as? (You may need to set Plugin-Log-Level:400 in your config to get the detail info). If it is after the user login attempt you may have your filter incorrect. We use sAMAccountName=$\USER$ for the filter. Fred From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of J.T. Shyman Sent: Thursday, May 22, 2008 3:56 PM To: [email protected] Subject: Re: ARS 7.1 Area LDAP config issue ** v\:* { BEHAVIOR: url(#default#VML) } o\:* { BEHAVIOR: url(#default#VML) } w\:* { BEHAVIOR: url(#default#VML) } ..shape { BEHAVIOR: url(#default#VML) } @font-face { font-family: Tahoma; } @font-face { font-family: Book Antiqua; } @page Section1 {size: 8.5in 11.0in; margin: 1.0in 1.25in 1.0in 1.25in; } P.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman" } LI.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman" } DIV.MsoNormal { FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman" } A:link { COLOR: blue; TEXT-DECORATION: underline } SPAN.MsoHyperlink { COLOR: blue; TEXT-DECORATION: underline } A:visited { COLOR: blue; TEXT-DECORATION: underline } SPAN.MsoHyperlinkFollowed { COLOR: blue; TEXT-DECORATION: underline } P { FONT-SIZE: 12pt; MARGIN-LEFT: 0in; MARGIN-RIGHT: 0in; FONT-FAMILY: "Times New Roman"; mso-margin-top-alt: auto; mso-margin-bottom-alt: auto } SPAN.EmailStyle17 { COLOR: navy; FONT-FAMILY: Arial; mso-style-type: personal-reply } DIV.Section1 { page: Section1 } Kevin, Yes, the bind user should be in the same format as the User Base. That is: CN=<user name>,OU=<container>,DC=<domain>,DC=<domain> Your AD admin, if that isn’t yourself, should be able to give you the distinguished name for the user. --- J.T. Shyman From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Kevin Pulsen Sent: Thursday, May 22, 2008 4:50 PM To: [email protected] Subject: Re: ARS 7.1 Area LDAP config issue ** Nope, that didn't work either tuser1 is the account I am attempting to read AD with testco.com is the domain and tuser1 is located in ou=Support Desk,ou=Admins,ou=NETWORKOPS. shouldn't it be something like cn=tuser1,ou,ou,dc ??? thanks Kevin P. _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
