How could I know my windows credential for LDAP admin

General Discussion about LDAP Administrator

Moderator: Support

How could I know my windows credential for LDAP admin

Postby ran » Tue Sep 12, 2006 9:35 pm

hello all,

When I create a server profile, there is an option that you can use

Currently logged on user(Active Directory Only)

I need ldapadmin connect to AD server however and it works just wondering is there a way that I can see my credential?

something like sAMAccountName=mylogin, CN=my name,OU=Users,OU=IT,DC=domain1,DC=com ??

thanks for the attention.

Ran
ran
 
Posts: 2
Joined: Tue Sep 12, 2006 9:28 pm

Postby Support » Wed Sep 13, 2006 8:47 am

Support
 
Posts: 840
Joined: Sun Aug 12, 2001 12:00 am

ldapadmin can browse but cannot do ldapsearch

Postby ran » Wed Sep 13, 2006 3:48 pm

Hi, Thanks very much for this tool, very useful.

I got the result (please forgive me replaced some of the fields for security reason)

CN=Ran Li, OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com

However, my login is Ran.Li, and the only attribute that match this value is sAMAccountName: Ran.Li

so I m not sure if my login should be

CN=Ran Li, OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com

or

sAMAccountName=Ran.Li,CN=Ran Li, OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com

another question is, I chose this option "Currently logged on user(Active Directory Only)" and I can browse the AD entries in ldapadmin, when I tried to do the same in Linux using ldapsearch, I cannot get authenticate no matter use CN=Ran Li..... or sAMAccountName=Ran.Li...... please see if you could help. Thanks.

# ldapsearch -x -h 10.15.150.12 -D CN=Ran Li,OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com -w password -b OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com displayName="Ran Li"

ldap_bind: Invalid credentials (49)
additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

# ldapsearch -x -h 10.15.150.12 -D sAMAccountName=Ran.Li,CN=Ran Li,OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com -w password -b OU=People,OU-UserAccounts,DC=global,DC=Company,DC=com displayName="Ran Li"

ldap_bind: Invalid credentials (49)
additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece
ran
 
Posts: 2
Joined: Tue Sep 12, 2006 9:28 pm

Postby Support » Thu Sep 14, 2006 9:05 am

Use exactly the string that GetMyDN apllet displays.
Support
 
Posts: 840
Joined: Sun Aug 12, 2001 12:00 am


Return to General Discussion

Who is online

Users browsing this forum: No registered users and 1 guest