Please forgive me
for asking such a seemingly rudamentary question, but I am having problems
configuring the ldap client on my Linux 4.0 box. I am attempting to authenticate
to our Active Directory servers, but I cannot even get the first part down. I am
simply trying to make a query to the LDAP server on our AD box, and cannot get
openldap on the client to work. I recieve the following message... Please help
me... I have looked all over the web and can find nothing to help.... for
instance, where are the log files I should be looking at to help figure out what
is happening...
Thanks for your
help!!!
Tom
[EMAIL PROTECTED]
openldap]# ldapsearch
SASL/EXTERNAL authentication started
ldap_sasl_interactive_bind_s: Unknown authentication method (-6)
additional info: SASL(-4): no mechanism available:
SASL/EXTERNAL authentication started
ldap_sasl_interactive_bind_s: Unknown authentication method (-6)
additional info: SASL(-4): no mechanism available:
This may be
helpful....
[EMAIL PROTECTED]
openldap]# ldapsearch -Z -x -s base -b ""
supportedSASLMechanisms
ldap_start_tls: Server is unavailable (52)
additional info: 00000000: LdapErr: DSID-0C090CF0, comment: Error initializing SSL/TLS, data 0, vece
# extended LDIF
#
# LDAPv3
# base <> with scope base
# filter: (objectclass=*)
# requesting: supportedSASLMechanisms
#
#
dn:
supportedSASLMechanisms: GSSAPI
supportedSASLMechanisms: GSS-SPNEGO
supportedSASLMechanisms: EXTERNAL
supportedSASLMechanisms: DIGEST-MD5
# search result
search: 3
result: 0 Success
# numResponses: 2
# numEntries: 1
ldap_start_tls: Server is unavailable (52)
additional info: 00000000: LdapErr: DSID-0C090CF0, comment: Error initializing SSL/TLS, data 0, vece
# extended LDIF
#
# LDAPv3
# base <> with scope base
# filter: (objectclass=*)
# requesting: supportedSASLMechanisms
#
#
dn:
supportedSASLMechanisms: GSSAPI
supportedSASLMechanisms: GSS-SPNEGO
supportedSASLMechanisms: EXTERNAL
supportedSASLMechanisms: DIGEST-MD5
# search result
search: 3
result: 0 Success
# numResponses: 2
# numEntries: 1
And here is my
config file (/etc/openldap/ldap.conf) ***Please NOTE I have replaced our actual
hostname info with host, domain, and com. In the actual file, these represent
our actual host name information. ****
[EMAIL PROTECTED]
openldap]# vi ldap.conf
#
# LDAP Defaults
#
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
#BASE dc=example, dc=com
#URI ldap://ldap.example.com ldap://ldap-master.example.com:666
URI ldap://192.168.100.1
#SIZELIMIT 12
#TIMELIMIT 15
#DEREF never
BASE dc=host,dc=domain,dc=com
HOST 192.168.100.1
#
# LDAP Defaults
#
# See ldap.conf(5) for details
# This file should be world readable but not world writable.
#BASE dc=example, dc=com
#URI ldap://ldap.example.com ldap://ldap-master.example.com:666
URI ldap://192.168.100.1
#SIZELIMIT 12
#TIMELIMIT 15
#DEREF never
BASE dc=host,dc=domain,dc=com
HOST 192.168.100.1
scope
sub
ldap_version 3
BINDDN cn=dirsearch,cn=Users,dc=host,dc=domain,dc=com
bindpw password
---ldap_version 3
BINDDN cn=dirsearch,cn=Users,dc=host,dc=domain,dc=com
bindpw password
You are currently subscribed to [email protected] as: [EMAIL PROTECTED]
To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
