It might be just me and my OCD, but I see an extra space after your domain name in the messages. Maybe check that? > "ADMAIN11.gccaz.edu <http://admain11.gccaz.edu/> " > 'Hostname 'ADMAIN11.gccaz.edu <http://admain11.gccaz.edu/> ' could not be > resolved.
Bogdan > On 4 Sep 2020, at 02:17, Mike Jumper <[email protected]> wrote: > > On Thu, Sep 3, 2020 at 3:38 PM sysjaj <[email protected] > <mailto:[email protected]>> wrote: > ... > Sep 3 11:27:13 guacamole tomcat9[862]: 11:27:13.994 [http-nio-8080-exec-8] > ERROR o.a.g.a.ldap.LDAPConnectionService - Binding with the LDAP server at > "ADMAIN11.gccaz.edu <http://admain11.gccaz.edu/> " as user > "CN=jaytest,OU=DomainUsers,DC=gccaz,DC=edu" > failed: ERR_04121_CANNOT_RESOLVE_HOSTNAME Cannot connect to the server, > Hostname 'ADMAIN11.gccaz.edu <http://admain11.gccaz.edu/> ' could not be > resolved. > Sep 3 11:27:13 guacamole tomcat9[862]: 11:27:13.995 [http-nio-8080-exec-8] > ERROR o.a.g.a.l.AuthenticationProviderService - Unable to bind using search > DN "CN=jaytest,OU=DomainUsers,DC=gccaz,DC=edu" > > Now the Hostname not resolving confuses me as this server CAN ping that > domain controller via IP and host name and joined the domain. (I have also > tried the config file with IP address and get the SAME error which I would > have thought not possible using IPs.) > > Your LDAP server may be returning a referral to that domain. > > Here is example of NSlookup on the the > server which does resolve: > > root@guacamole:/var/log# nslookup admain11 > Server: 127.0.0.53 > Address: 127.0.0.53#53 > > Non-authoritative answer: > Name: admain11.gccaz.edu <http://admain11.gccaz.edu/> > Address: 10.1.50.240 > > This is not necessarily the same as a DNS lookup for the "admain11.gccaz.edu > <http://admain11.gccaz.edu/>" hostname provided for your "ldap-hostname" > property. What does dig (not nslookup) return for the exact value specified > in your guacamole.properties? > > - Mike >
