Le 13/01/2019 à 16:26, Martin Toth a écrit : > Hi all, > > I just installed LTB package for Debian to Ubuntu from LTB repo, but > its does not work either. Logs showing same behaviour, I cannot see > BaseDN - endless fetching. > This is from syslog (repeating): > > Jan 13 09:20:42 mysql2 slapd[12912]: conn=1013 fd=41 ACCEPT from > IP=[::1]:54728 (IP=[::]:389) > Jan 13 09:20:42 mysql2 slapd[12912]: conn=1013 op=0 BIND dn="" method=128 > Jan 13 09:20:42 mysql2 slapd[12912]: conn=1013 op=0 RESULT tag=97 > err=0 text= > Jan 13 09:20:42 mysql2 slapd[12912]: conn=1013 op=1 SRCH > base="cn=admin,dc=all" scope=0 deref=3 filter="(objectClass=*)" > Jan 13 09:20:42 mysql2 slapd[12912]: conn=1013 op=1 SRCH > attr=hasSubordinates objectClass > > It’s default installation with only modify of > /usr/local/openldap/etc/openldap/slapd.conf, I’ve added (only one > modification) : > > database ldap > suffix "cn=admin,dc=all" > rootdn "cn=admin,dc=all" > rootpw "password" > > database ldap > suffix “ou=domain.com <http://domain.com>,dc=all" > uri ldap://IPADDRESSofActiveDirectory > idassert-bind bindmethod=simple > binddn=“CN=bind,CN=Users,DC=real,DC=suffix" > credentials=“password" > mode=none > flags=non-prescriptive > idassert-authzFrom "dn.exact:cn=admin,dc=all" > > overlay rwm > rwm-suffixmassage "ou=domain.com <http://domain.com>,dc=all" > “dc=real,dc=suffix” > > I can’t understand where is the problem. Thanks for help in advance. >
Hello, try to search on your LDAP proxy as "cn=admin,dc=all" and not as anonymous, else the bind on AD side will also be done as anonymous, on AD display no entry in this case. -- Clément Oudot | Identity Solutions Manager [email protected] Worteks | https://www.worteks.com
_______________________________________________ ltb-dev mailing list [email protected] https://lists.ltb-project.org/cgi-bin/mailman/listinfo/ltb-dev
