Hi
I have tested the packetfence installation multiple times now and have
created an okay guide for my self.
Now i am moving into production and can now see that my Active Directory
security settings was not the same, so good work to me :P
I cannot create a Active Directory Domain inside packetfence, because
anonymous binding is not allowed and somehow packetfence tries with
anonymous before the admin username and password entered in the UI.
With a ldapsearch commandline i have to specify the bind options with
full DN of the user.
Is there any way to get this behavior into packetfence ui or is it
possible to create the active directory domain from cli ?
The Connection profile part works like charm, it is only the active
Directory part (Configuration - Policies and Access control - Roles -
Active Directory Domains)
I get the following error in the UI
```
A Unable to add machine account with following error: {'result': 1,
'description': 'operationsError', 'dn': '', 'message': '000004DC:
LdapErr: DSID-0C09128C, comment: In order to perform this operation a
successful bind must be completed on the connection., data 0,
v4f7c\x00', 'referrals': None, 'type':'addResponse'} config/domains
```
I have added the LdapEnforceChannelBinding to registry and set it to 0
in value to disable it.
I am running latest packetfence on debian 11
root@packetfence02:~# cat /etc/debian_version
11.9
Can anyone point me in the right direction ?
Regards
Peter Jensen
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users
