[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP as a proxy for Active Directory (missing attributes)



On 08/26/2010 11:10 PM, Mike Olivieri wrote:

> However, when I try to search for that same user using ldapsearch, I get
> no results.
> ldapsearch -x \
>         -a always \
>         -h fqa-ldap \
>         -p 9389 \
>         -D "CN=mike0,OU=Service Accounts,dc=myco_ad,dc=mycompany,dc=com" \
>         -w "password" \
>         -b "DC=MYCO_AD,dc=mycompany,dc=com" \
>         "(sAMAccountName=mikeo)"

Try omitting the search filter '(sAMAccountName)', do you get any
results then? If so, then you need to add the attribute declaration for
sAMAccountName to your schema:

attributetype ( 1.2.840.113556.1.4.221
        NAME 'sAMAccountName'
        EQUALITY caseExactMatch
        SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
        SINGLE-VALUE )

That's my only guess to this and I'll leave it to the experts if that's
not the solution :)

- Marius