similar to: LDAP (AD) auth problem

Displaying 20 results from an estimated 900 matches similar to: "LDAP (AD) auth problem"

2019 Aug 15
2
Failing to join existing AD as DC
I tried joining the same AD before and succeeded, however after upgrading to Debian Buster and installing AD Certificate Services on the Windows DC my join does not work anymore: samba-tool domain join samdom.example.com DC -U?SAMDOM\adadmin? ?site=?KA-H9? fails during the ldap part with: Join failed - cleaning up Failed to bind - LDAP error 49 LDAP_INVALID_CREDENTIALS - <8009030C: LdapErr:
2018 Jan 22
5
RODC and LDAP via Simple Authentication fails
Dear all, setting up a DMZ environment I was thinking to use an RODC there for user authentication. One of the application in the DMZ needs to access the directory via LDAP. When I tried to connect to the RODC using LDAP with simple bind, I always received the following error ldap_bind: Invalid credentials (49)         additional info: 80090308: LdapErr: DSID-0C0903A9, comment:
2010 Nov 14
1
dovecot with Active Directory problem
Hello, I am using dovecot-2.0.6 with NetBSD amd64. Active Directory is used as an authentication server. (Windows Server 2008 R2) However, the message of "Operations error" was displayed first and it did not move. It solved it by understanding that this is because the authority of the user who used it for bind was insufficient, and adding to "Account Operators" group. #
2006 Aug 24
1
[OT] ldapmodify options for changing AD attributes
I have a samba 3 dc where users log on with their win xp workstations and I have a w2k3 domain where there is an exchange server the users connect to with outlook. I would like to do an ldapmodify command on active directory to initially align time password was set for both samba and exchane and then have the users notified when logon samba pwd is near to expirate and so they receive also
2019 Aug 15
2
Failing to join existing AD as DC
Hai, ? From what i see below. ? kinit that should work, or error in krb5.conf or resolv.conf. What is the first resolver in resolv.conf and is samba configured with internal DNS or Bind9_DLZ? ? This is in /etc/ldap/ldap.conf TLS_CACERT????? /etc/ssl/certs/ca-certificates.crt TLS_REQCERT allow ? cp /var/lib/samba/private/krb5.conf /etc/krb5.conf not really needed, but it does not hurt. ?
2018 Mar 02
3
Error joining Samba 4.7.4 DC to existing Win2008R2 domain
Thanks for your attention > You are always receiving these: > > Adding DNS A record SRVAD-NEW.SAMDOM.LOCAL for IPv4 IP: 10.0.3.100 > Join failed - cleaning up Yes, but the DNS record is created and it persists after the failure. Another thing I've noticed using RSAT "Active Directory Users and Computers" is that the new DC computer account SRVAD-NEW$@SAMDOM.LOCAL is
2019 Jun 25
2
One DC cannot authenticate off of another DC
Hello Samba Friends, I have a single DC (we'll call it, "DC1") that simply will not take my password when I run this command:? #samba-tool ldapcmp ldap://dc2 ldap://dc3 -Uadministrator? Or this command:? #samba-tool ldapcmp ldap://dc1 ldap://dc2 -Uadministrator? I basically get this:? > Password for [SAMDOM\administrator]:? > Password for [SAMDOM\administrator]:?
2017 Jun 21
4
DRS stopped working after upgrade from debian Jessie to Stretch
21.06.2017 11:45, L.P.H. van Belle via samba пишет: > I suggest before you upgrade do a very good read here. > > https://wiki.samba.org/index.php/Updating_Samba#Notable_Enhancements_and_Changes > > https://wiki.samba.org/index.php/Samba_Features_added/changed_(by_release) > And a summerize version for with all parameter changes as of upgrade from 4.2 up to 4.6 >
2015 Oct 07
1
Failed to transfer all 7 FSMOs
Hello, > On 07/10/15 00:33, TAKAHASHI Motonobu/高橋 基信 wrote: > > Hello, > > > > I tested to transfer all 7 FSMOs from Windows Server 2003 Enterprise > > to Samba 4.3.0 DC. (I think some users still use Win2K3 and want to > > migrate.) But unfortunately is failed. > > > > To reproduce, > > > > (1) Promoto Win2K3R2 Enterprise host to first DC.
2020 Oct 10
10
Mail samba
Hi I am trying to authenticate my mail server with samba ad. The only problem is that I don?t get it working. root at dna:/data/CA/EasyRSA-v3.0.6# ldapsearch -x -h gaia.rompen.lokaal -D 'vmail' -W -b 'cn=users,dc=rompen,dc=lokaal' Enter LDAP Password: ldap_bind: Strong(er) authentication required (8) additional info: BindSimple: Transport encryption required. I can not read
2009 Nov 18
1
Postfix+Dovecot SASL+LDAP(AD)
I have tried configure Postfix with Dovecot SASL to authenticate remote users in LDAP (Active Directory). Below my dovecot.conf: protocols = none ssl = none auth default { ??? mechanisms = plain login ?? ?passdb ldap { ??????? args = /usr/local/etc/dovecot-ldap.conf ? } ?? ?userdb ldap { ??????? args = /usr/local/etc/dovecot-ldap-userdb.conf ? } }
2015 Jun 22
4
LDAP authentication
Hi again I'm trying to authenticate a user against an LDAP Server (well, our AD, but it can LDAP). This is my configuration: hosts = my.server.local auth_bind = yes ldap_version = 3 base = CN=Person,CN=Schema,CN=Configuration,DC=company,DC=local scope = subtree user_attrs = \ =home=/home/imapproxy/%u, \ =mail=maildir:/home/imapproxy/%u pass_attrs = uid=%u, userPassword=%w
2015 Oct 06
2
Failed to transfer all 7 FSMOs
Hello, I tested to transfer all 7 FSMOs from Windows Server 2003 Enterprise to Samba 4.3.0 DC. (I think some users still use Win2K3 and want to migrate.) But unfortunately is failed. To reproduce, (1) Promoto Win2K3R2 Enterprise host to first DC. (2) Join self-built Samba 4.3.0 to the domain. (3) Run 'samba-tool fsmo transfer --role=all' root at jessie64-1:~# samba-tool fsmo
2019 Jun 26
4
One DC cannot authenticate off of another DC
Thank you, Louis, for your reply. By simply asking me to provide outputs of the aforementioned files, I found the cause of my first problem (auth failing). It was my /etc/hosts file on dc1. All of them should look like this, and indeed DC2 and DC3's *did* look like this: # cat /etc/hosts > 127.0.0.1 ? ? ? localhost.samdom.mycompany.net ?localhost > 192.168.3.201
2019 Aug 08
3
Problems joining Samba 4 in the domain
Hi, I have 2 DC in my network. DC master is a Samba 4 and the secondary is Windows Server 2008. I want to put another Samba 4 as DC to replace Windows Server, however the following errors are emerging: root at samba4-dc2:~# samba-tool domain join empresa.com.br DC -k yes -d 3 lpcfg_load: refreshing parameters from /etc/samba/smb.conf GENSEC backend 'gssapi_spnego' registered GENSEC
2007 Oct 25
0
apache mod_authnzldap against Active Directory
Hey guys I am running CentOS 5 with httpd 2.2.3 I am trying to configure mod_authnzldap authing against Active Directory and I have it working about 50% of the time. About 50% of the time this works with no issue, the rest of the time it fails. Sometimes it fails and notes the following in the error log: [Mon Oct 22 15:58:03 2007] [debug] mod_authnz_ldap.c(373): [client 10.XXX.XX.XXX]
2018 Nov 27
10
Setup a Samba AD DC as an additional DC
Hai, I had a quick look. Barry, can you get this script and run it. https://raw.githubusercontent.com/thctlo/samba4/master/samba-collect-debug-info.sh Then post the results to the list. It collects all info i need to have a better look. I have a few ideas, this might be a resolving order problem, i've based on the errors below. Can you also post the output of bind from the point its
2018 Nov 29
4
Setup a Samba AD DC as an additional DC
Hai Barry, > Onderwerp: [Samba] Setup a Samba AD DC as an additional DC > > >What is the running AD DC its os version/build, it was an MS server? > 2 AD DCs Windows 2012, 1 is 2008, but the DC for the join is > a 2012 windows DC Yes, but win 2012 which one? 2012 or 2012R2 Can you open a dosbox (cmd) and type : ver The build nummer is? > > Then question after
2023 Oct 28
1
query account expired state
Op 28-10-2023 om 09:37 schreef Rowland Penny via samba: > On Fri, 27 Oct 2023 23:48:22 +0200 > Kees van Vloten via samba <samba at lists.samba.org> wrote: > >> Hi Team, >> >> Is it possible to make a LDAP-query that returns whether an account >> is expired or not? >> >> I am aware that it is possible to do the maths against the >>
2019 Jun 26
4
Samba 4.10 member: SMB login no longer working
Hai, And Omg... Your right, its my fault. :-/ I didnt say to you, you needed make the changes, to change what Rowland showed. Im really sorry.. ;-) when im in austria i'll buy you a beer. Or if you want teach you snowboarding.. I have an other guy in austria that cant ski/board. Im going to teach him also. .. So funny a dutch guy teaching to austria guys.. :-) And how is it running