[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pamldap
Subject:    Re: [pamldap] Active Directory pam_ldap search returns 0 results
From:       "Gerald (Jerry) Carter" <jerry () samba ! org>
Date:       2007-01-06 23:01:31
Message-ID: 45A02A4B.8090404 () samba ! org
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

dstensrud wrote:
> Okay. I started using wireshark to monitor the information going back and
> forth between the AD and my linux machine.  I'm trying to authenticate users
> through AD via pam_ldap.  I can make a successful bind but when the user
> goes to do the search it doesn't return results.  I have the same exact
> setup in another office and it works fine, but this one that I'm working on,
> the AD isn't mine, and I don't have access to it.  If I issue an ldapsearch
> from the command line it works.. here is an example:
> 
> LDAPSEARCH COMMAND:
> ================
> ldapsearch -vvv -x -W -D binduser@hops.org -LLL
> "(&(objectclass=User)(sAMAccountName=jsmith))"
> ldap_initialize( <DEFAULT> )
> Enter LDAP Password:
> filter: (&(objectclass=User)(sAMAccountName=jsmith))
> requesting: All userApplication attributes
> dn: CN=jsmith,OU=Contrators,DC=hops,DC=org
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

...
> ------- okay now its going to issue the search-------------
> 
>        NOP
>         Timestamps: TSval 1113900, TSecr 20408054
> Lightweight-Directory-Access-Protocol
>     LDAPMessage searchRequest(2) "cn=Users,dc=hops,dc=org" wholeSubtree
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Your search bases don't match.





cheers,jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFoCpLIR7qMdg1EfYRAtFfAJ40++IubtdUjh5IIiTCeCmpP4UomACfZywY
AqKsAxZmifvu8q4PmNqXPK0=
=6vvk
-----END PGP SIGNATURE-----
[prev in list] [next in list] [prev in thread] [next in thread]