Eric, I just found the problem: there is a typo in ldap URL: sAMAccountName has an i at the end. After I removed it, it is working fine.
AuthLDAPURL "ldaps://my.com:636/DC=my,DC=com?sAMAccountName*i*?sub?( objectclass=user) <http://my.com:636/DC=my,DC=com?sAMAccountNamei?sub?(objectclass=user)>" Your suggestion to do ldapsearch made me look through these values and that is how I found it. Thanks for the help! On Tue, Jul 5, 2016 at 1:41 PM, Eric Covener <[email protected]> wrote: > On Tue, Jul 5, 2016 at 2:32 PM, Roger Paanini <[email protected]> > wrote: > > I have redacted the response to protect confidential info. Do you need > the > > full response? > > > I don't think so. Could you capture both searches in wireshark and see > how they differ at a low level? Something might stand out > side-by-side. > > -- > Eric Covener > [email protected] > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
