On Thu, Sep 3, 2020 at 3:38 PM sysjaj <[email protected]> wrote:
> ... > Sep 3 11:27:13 guacamole tomcat9[862]: 11:27:13.994 [http-nio-8080-exec-8] > ERROR o.a.g.a.ldap.LDAPConnectionService - Binding with the LDAP server at > "ADMAIN11.gccaz.edu " as user "CN=jaytest,OU=DomainUsers,DC=gccaz,DC=edu" > failed: ERR_04121_CANNOT_RESOLVE_HOSTNAME Cannot connect to the server, > Hostname 'ADMAIN11.gccaz.edu ' could not be resolved. > Sep 3 11:27:13 guacamole tomcat9[862]: 11:27:13.995 [http-nio-8080-exec-8] > ERROR o.a.g.a.l.AuthenticationProviderService - Unable to bind using search > DN "CN=jaytest,OU=DomainUsers,DC=gccaz,DC=edu" > > Now the Hostname not resolving confuses me as this server CAN ping that > domain controller via IP and host name and joined the domain. (I have also > tried the config file with IP address and get the SAME error which I would > have thought not possible using IPs.) Your LDAP server may be returning a referral to that domain. Here is example of NSlookup on the the > server which does resolve: > > root@guacamole:/var/log# nslookup admain11 > Server: 127.0.0.53 > Address: 127.0.0.53#53 > > Non-authoritative answer: > Name: admain11.gccaz.edu > Address: 10.1.50.240 > This is not necessarily the same as a DNS lookup for the "admain11.gccaz.edu" hostname provided for your "ldap-hostname" property. What does dig (not nslookup) return for the exact value specified in your guacamole.properties? - Mike
