Hi! I'm the AD administrator for the relevant domain. I do want to help mnespen, but I don't want to lower the security of my domain.
> They only allow a connection which uses SSL or TLS. That's not true. We support SASL with LDAP signing, but for some reason, mnespen still gets that error message. I hinted that TLS may work better, and that is probably the source of this misunderstanding. The relevant options, as far as I can tell, turned on at my domain controllers are: HKLM\System\CurrentControlSet\Services\LanManServer\Parameters\RequireSecuritySignature = 0x1 HKLM\System\CurrentControlSet\Services\NTDS\Parameters\LDAPServerIntegrity = 0x2 HKLM\SYSTEM\CurrentControlSet\Control\Lsa\LmCompatibilityLevel = 0x5 I guess this should be supported in OpenSolaris? -- This message posted from opensolaris.org
