| Yubico Forum https://forum.yubico.com/ |
|
| [RESOLVED] Active Directory does not want to bind using LDAP https://forum.yubico.com/viewtopic.php?f=29&t=1107 |
Page 1 of 1 |
| Author: | kr1spy84 [ Wed Jul 10, 2013 8:34 pm ] |
| Post subject: | [RESOLVED] Active Directory does not want to bind using LDAP |
So I'm trying to setup a YubiRadius server and the issue I'm having is when I try to import users. I get the following message: Quote: User Import operation started... Connecting to LDAP/AD server. Successfully connected to LDAP/AD server. Binding to server with given user credentials. Failed to bind to server. Failed to find Users. Please check login credentials or Directory Type. Our domain is Windows 2008 R2 and it clearly seems to get to the AD server but fails on the credentials. I have tried retyping in the password and that doesn't seem to fix it. Anyone else run into a similar situation? |
|
| Author: | kr1spy84 [ Fri Jul 12, 2013 3:58 pm ] |
| Post subject: | Re: [QUESTION] Active Directory does not want to bind using |
Resolved this - i created another user specifically for LDAP queries. |
|
| Author: | jayphoenix218 [ Thu Jul 25, 2013 3:16 pm ] |
| Post subject: | Re: [RESOLVED] Active Directory does not want to bind using |
I have had this error too. Admittedly, I have not spent too much time trying to fix it, but as I am a bit of an AD noob, could you briefly describe the user account you created for LDAP queries? |
|
| Author: | bbladesCSE [ Fri Oct 04, 2013 2:32 pm ] |
| Post subject: | Re: [RESOLVED] Active Directory does not want to bind using |
Any user account should work as long as the name and password are correct. Did you ever resolve your issue? I'm having it too, and i have no clue why. |
|
| Author: | Jesterize [ Tue Oct 29, 2013 4:30 pm ] |
| Post subject: | Re: [RESOLVED] Active Directory does not want to bind using |
I had this same problem. Couple of things to try. First, make certain that your Base DN is set like this "dc=microsoft,dc=com". Second, create a new Administrator login and then set your User DN be just the new name like, "Yubikey". Don't add all the CN, OU, or DN. Lastly, to make it work with standard Windows login names (not Full Name which no one uses), change the Login Name Identifier to 'sAMAccountName' instead of 'cn'. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|