|
Hi all, I am testing a OpenLDAP act as LDAP proxy server using
meta-backend. My back-end server contain AD servers and some OpenLDAP servers. When this OpenLDAP server connects to other OpenLDAP servers
to query data, everything is okie, I get any data as I desire. But, when I use
this server query to AD server, the return code is always Operation Error. I
debug this process and I get a error which AD server return to my OpenLDAP
server “errorMessage:
00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a
successful bind must be completed on the connection., data 0, vece”
although I had configured a binddn and bindpw for my OpenLDAP server. But if I
using ldapsearch, query directly to AD server and specify username and
password, everything is okie L. Here is a piece
of my sldapd.conf: database meta suffix
"dc=abc,dc=com " uri
"ldap://10.3.0.24/dc=abc,dc=com " binddn
"cn=root,dc=abc,dc=com " bindpw
123 suffix
"dc=xyz,dc=net" uri
"ldap://10.3.0.26/dc=xyz,dc=net" binddn
"cn=openldap,cn=Users,dc=xyz,dc=net" bindpw
123 map
attribute
uid
sAMAccountName map
attribute
cn
name map
attribute
mail
userPrincipalName map
objectClass
account user map
attribute
* Note: 10.3.0.24 is a OpenLDAP server IP and 10.3.0.26 is AD
server IP. I used openldap@xyz.net
to query data from AD server directly and It is okie. But in this case, I got
an error. Any idea for my problem? Thanks and best regards, |