[Ltb-users] LDAP Directory’s accessing problem in Active Directory

Fri, 08 Jun 2012 00:09:52 -0700 

Hello
I'm in trouble configuring LTB to change passwords in Active Directory; I don't 
know what I'm doing wrong.
I followed the instructions for Configuring an SSL Certificate for Microsoft 
Active Directory, from site:
https://confluence.atlassian.com/display/CROWD/Configuring+an+SSL+Certificate+for+Microsoft+Active+Directory

1.      My  CA has:
        CA type: Enterprise Root
        Common Name for CA: Gannicus
        Distinguished Name Suffix: DC=uclv4,DC=edu,DC=cu
        Preview of Distinguished Name: CN=Gannicus,DC=uclv4,DC=edu,DC=cu


2.      I exported the certificate with the command:
        certutil –ca.cert ca.crt

3.     I tested the connection with ldp.exe in the Active Directory server. I 
used SSL in port 636 and it connected successfully

4.     I copied the certidicate to the client machine (Ubuntu) in 
/etc/ssl/ca.crt

5.     I edited the file ldap.conf with:
        TLS_CACERT /etc/ssl/ca.crt
        TLS_REQCERT allow

6.     I tested the conection from the client machine (ubuntu).
        telnet 10.12.2.99
        I had this results:
        Trying 10.12.2.99...
        Connected to 10.12.2.99

7.     My configuration file conf.inc.php has the next code:

#======================================================
# Configuration
#======================================================
# LDAP
$ldap_url = "ldaps://10.12.2.99:636";
$ldap_binddn = "CN=Administrator,CN=Users,DC=uclv4,DC=edu,DC=cu";
$ldap_bindpw = "Riddle-88";
$ldap_base = "CN=users,DC=uclv4,DC=edu,DC=cu";
$ldap_filter = 
"(&(objectClass=user)(sAMAccountName={login})(!(userAccountControl:1.2.840.113556.1.4.803:=2)))";
#$ldap_filter = "(&(objectClass=person)(uid={login}))";

# Active Directory mode
# true: use unicodePwd as password field
# false: LDAPv3 standard behavior
$ad_mode = true;
# Force account unlock when password is changed
$ad_options['force_unlock'] = true;
# Force user change password at next login
$ad_options['force_pwd_change'] = false;

8.      With this configuration there is an error that says “Can not Access to 
LDAP Directory". I attached this picture.


Please help with this isue, I need for my thesis on June 15.
Thanks for your time, sincerely
Luis Armando





La Universidad Central "Marta Abreu" de Las Villas en su 60 Aniversario. 
Fundada el 30 de noviembre de 1952. Visítenos en:  http://www.uclv.edu.cu

Attachment: SelfService.rar
Description: SelfService.rar

_______________________________________________
ltb-users mailing list
[email protected]
http://lists.ltb-project.org/listinfo/ltb-users

Reply via email to