On Thu, 3 May 2018 18:14:16 +0000
Suman Koirala via samba <samba at lists.samba.org> wrote:
> I was trying to authenticate from AD and could not bind with the
> server.
>
> I was able to do ldapsearch.
>
> please suggest the possible cause for failed to bind server.
>
> This is the log info from log.winbind-idmap
>
>
> dd_dual.c:60(child_read_request)
> child_read_request: read_data failed: NT_STATUS_END_OF_FILE
> [2018/04/19 20:03:09.741686,
> 0] ../source3/lib/smbldap.c:1046(smbldap_connect_system) failed to
> bind to server ldap:/// with
dn="cn=admin,dc=bean,dc=mydomain,dc=com"
> Error: Can't contact LDAP server (unknown)
>
>
>
> this is idmap config for winbind in smb.conf file.
>
>
> idmap config * : backend = ldap
> idmap config * : ldap_url = ldap:///
>
> idmap config * : ldap_base_dn = ou=idmap,dc=bean,dc=mydomain,dc=com
> idmap config * : ldap_user_dn = cn=admin,dc=bean,dc=mydomain,dc=com
>
>
>
> the slapcat result
>
>
> dn: dc=bean,dc=mydomain,dc=com
> objectClass: top
> objectClass: dcObject
> objectClass: organization
> o: mydomain.com
> dc:bean
> structuralObjectClass: organization
> creatorsName: cn=admin,dc=bean,dc=mydomain,dc=com
>
>
> dn: cn=admin,dc=bean,dc=mydomain,dc=com
> objectClass: simpleSecurityObject
> objectClass: organizationalRole
> cn: admin
> description: LDAP administrator
>
> modifiersName: cn=admin,dc=bean,dc=mydomain,dc=com
>
>
>
> could you please hint us what can be the problem?
Do want to give us a big hint by posting your smb.conf ;-)
I could also ask why you are trying to authenticate from AD to an LDAP
server ???
Finally, have you set the secrets with:
smbpasswd -w ldapadminpassword
net idmap set secret 'DOMAIN' ldapadminpassword
Rowland