[Samba] Cisco ISE unable to retrieve AD group list from samba 4 server
Volker Lendecke
Volker.Lendecke at SerNet.DE
Tue Oct 22 03:51:46 MDT 2013
On Tue, Oct 22, 2013 at 11:30:10AM +0200, Andreas Oster wrote:
> Am 03.10.2013 20:39, schrieb Jeremy Allison:
> > On Thu, Oct 03, 2013 at 08:53:19AM +0200, Andreas Oster wrote:
> >> Am 02.10.2013 21:53, schrieb Jeremy Allison:
> >>> On Wed, Oct 02, 2013 at 11:38:21AM +0200, Andreas Oster wrote:
> >>>> Hi all,
> >>>>
> >>>> I have run into a problem with our samba4 setup. I have successfully
> >>>> joined a Cisco ISE v1.1.4 (Identity Service Engine) test machine to the
> >>>> samba4 AD. User authentication does work but unfortunately the ISE is
> >>>> unable to fetch the AD groups from the domain controller. In the samba
> >>>> logs I get the following error message when initiating the group fetch:
> >>>>
> >>>> [2013/10/02 10:21:37.605554, 0]
> >>>> ../source4/cldap_server/cldap_server.c:54(cldapd_request_handler)
> >>>> Invalid CLDAP request type 16 from ipv4:10.250.12.218:51136
> >>> LDAP request type 16 == LDAP_TAG_AbandonRequest
> >>> which we don't handle in the cldap request handler.
> >>>
> >>> That's why you're getting the error.
> >>>
> >>> Jeremy.
> >>>
> >> Hello Jeremy,
> >>
> >> thank you very much for your fast response. Any chance that this
> >> request type will be added ?
> > I don't know what the CLDAP request is supposted to
> > do (although I could look this up) - I'll let LDAP
> > experts reply first.
> >
> > Jeremy.
> Dear Jeremy,
>
> unfortunately nobody has answered my question regarding the missing
> cldaprequest type.
>
> Is there someone special I could directly address this question to ?
abartlet at samba.org
Volker
--
SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen
http://www.sernet.de, mailto:kontakt at sernet.de
More information about the samba
mailing list