I found a more recent example of settings that should work here:
http://mail-archives.apache.org/mod_mbox/openmeetings-user/201407.mbox/%[email protected]%3E

In particular these settings seem to be the only ones that differ from
the LDAP example configuration file:

ldap_search_query=(&(objectCategory=person)(objectClass=person)(sAMAccountName=%1$s))
ldap_search_scope=SUBTREE
ldap_auth_type=SEARCHANDBIND
ldap_userdn_format=sAMAccountName=%s,OU=Users,DC=Company,DC=com

After adopting those settings, when I ook at the packets using tcpdump
on an authentication attempt, I'm seeing OM attempt to find the login
user after doing something with the ldap_admin_dn account, however when
it comes time to find the user that I'm trying to log in as, I'm getting:
0000208D: NameErr: DSID-0310020A, problem 2001 (NO_OBJECT), data 0, best
match of: 'DC=intranet,DC=Company,DC=com'

(my ldap_search_base is ou=Users,dc=intranet,dc=Company,dc=com)

I know I'm close...

On 12/3/2014 10:24 PM, Ian wrote:
> According to the docs here:
> http://openmeetings.apache.org/LdapAndADS.html
>
> "In: $RED5_HOME/webapps/openmeetings/conf you will find sample
> configurations for LDAP and Active Directory."
>
> However, I only see an example configuration file for ldap, not AD. 
> Have the two been merged in 3.x?  When searching for the AD example
> file in Google, I'm finding examples, but the posts are all dated 2011
> or earlier and the settings are vastly different than those in the
> example LDAP configuration file.
>
> I've got AD working correctly with other open source projects
> (OpenFire), so I have some clue as to how to set things up, however, I
> don't see an option to set the username field to sAMAccountName, and
> I'm confused about what I need to set ldap_userdn_format to.

Reply via email to