--On Freitag, 5. April 2002 13:28 -0300 Andre Correa
<[EMAIL PROTECTED]> wrote:
> - For me the problem seens to be that W2K is not allowing me to query
> AD and that this: "Invalid credentials" message is just about it. I've
> tried to use LDAP_BINDDN and LDAP_BINDPW with an administrator
> username and password with no different results.
By default, AD does not allow anonymous access. You need to bind first. For
this you need a valid DN. Use
ldapsearch -x -h 10.96.0.3 -s base -b "" namingContexts
to find a valid namig context. This will give you something like:
namingContexts: CN=Schema,CN=Configuration,dc=abcd,dc=br
namingContexts: CN=Configuration,dc=abcd,dc=br
namingContexts: dc=abcd,dc=br
The one that starts with DC is the naming context you want.
By default, users go into the CN=Users container. So prepend you naming
context with it. Next you take the users common name (e.g. Administrator)
and prepend it to the string as well. You should get
CN=Administrator,CN=Users,dc=abcd,dc=br
Try this with ldapsearch
ldapsearch -x -h 10.96.0.3 -D "CN=Administrator,CN=Users,dc=abcd,dc=br"
-W -b "CN=Users,dc=abcd,dc=br" -z 3
--
Norbert Klasen, Dipl.-Inform.
DAASI International GmbH phone: +49 7071 29 70336
Wilhelmstr. 106 fax: +49 7071 29 5114
72074 T�bingen email: [EMAIL PROTECTED]
Germany web: http://www.daasi.de
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
