#1  
Old 18th July 2010, 16:20
boqor boqor is offline
Junior Member
 
Join Date: Jul 2010
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
Question Linux AD Integration

Hello folks,


I need only centralized authentication via M$ AD and I try configure nss-ldap in my debian box but syslog always says these messages;

Code:
Jul 18 15:58:01 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5: Invalid credentials
Jul 18 15:58:01 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5/: Invalid credentials
Jul 18 15:58:01 debox nscd: nss_ldap: reconnecting to LDAP server...
Jul 18 15:58:01 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5: Invalid credentials
Jul 18 15:58:01 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5/: Invalid credentials
Jul 18 15:58:01 debox nscd: nss_ldap: reconnecting to LDAP server (sleeping 1 seconds)...
Jul 18 15:58:02 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5: Invalid credentials
Jul 18 15:58:02 debox nscd: nss_ldap: failed to bind to LDAP server ldap://192.168.0.5/: Invalid credentials
Jul 18 15:58:02 debox nscd: nss_ldap: could not search LDAP server - Server is unavailable
Jul 18 15:58:02 debox sshd[16767]: Invalid user boqor from x.x.x.x
But i can get answers for ldapsearch command

Code:
ldapsearch -x -W -D "cn=Administrator,cn=Users,dc=ad,dc=domain,dc=tld"|grep sAMAccountName
Enter LDAP Password:

sAMAccountName: Administrator
sAMAccountName: Guest
sAMAccountName: boqor
.
.
.

My config files;

ldap.conf
Code:
host    192.168.0.5
BASE    dc=ad,dc=domain,dc=tld
URI     ldap://192.168.0.5/
binddn  cn=Administrator,cn=Users,dc=ad,dc=domain,dc=tld
bindpw  pazzword
scope sub
ssl no

libnss-ldap.conf
Code:
host    192.168.0.5
BASE    dc=ad,dc=domain,dc=tld
URI     ldap://192.168.0.5/
binddn  cn=Administrator,cn=Users,dc=ad,dc=domain,dc=tld
bindpw  pazzword
ldap_version 3
rootbinddn cn=Administrator,cn=User,dc=ad,dc=domain,dc=tld
libnss-ldap.secret
Code:
pazzword
nsswitch.conf
Code:
passwd: compat ldap
shadow: compat ldap
group: compat ldap

hosts:          files dns
networks:       files
protocols:      db files
services:       db files
ethers:         db files
rpc:            db files
netgroup:       nis
nss-ldapd.conf
Code:
host    192.168.0.5
BASE    dc=ad,dc=domain,dc=tld
URI     ldap://192.168.0.5/
binddn  cn=Administrator,cn=Users,dc=ad,dc=domain,dc=tld
bindpw  pazzword
scope sub
timelimit 30

Anybody can help me? How can i debug nss-ldap?
M$ logs are not readable or helpful.
Reply With Quote
Sponsored Links
  #2  
Old 9th December 2011, 20:10
joe.rella@gmail.com joe.rella@gmail.com is offline
Junior Member
 
Join Date: Dec 2011
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
 
Unhappy Linux AD integration

Was there ever a solution to this issue? I face the same thing.

I have tried seemingly a hundred different things, and it always comes back to this error:

nss_ldap: failed to bind to LDAP server ldap://x.x.x.x: Invalid credentials

Domain Controller has event log saying that srv_ldap attempted a type of login for which it is not permitted (interactive). However, srv_ldap does have the right to log on interactively, as specified in Group Policy.

I'm going insane. Thanks for any help.
Reply With Quote
Reply

Bookmarks

Tags
active directory, authentication, linux

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Unsupported memory accesses after HowTo Installing Xen On An Ubuntu 8.04 petervanbussel HOWTO-Related Questions 10 20th December 2009 20:46
PPTP causes Postfix reload fpizzinini Server Operation 4 3rd October 2008 20:43
not receiving mail (postfix) lathrodectus General 7 28th June 2006 15:12
Problems installing NForce4 sound drivers Wraithfire Installation/Configuration 21 16th April 2006 18:30
KErnel not showing all my memory Jorem Kernel Questions 8 13th April 2006 13:59


All times are GMT +2. The time now is 12:40.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.