[Samba] can't connect ldapsearch with samba 4
Achim Gottinger
achim at ag-web.biz
Sun Jun 19 17:37:48 UTC 2016
On my side i neede
TLS_REQCERT allow
in /etc/ldap.conf to get ldaps working.
To use unencrypted connections add
ldap server require strong auth = no
To the global section of smb.conf.
achim~
Am 19.06.2016 um 18:55 schrieb Trenta sis:
> Hi,
>
> First of all thans for you answer.
>
> I have tried but is not working, we receive:
>
> # kinit administrator
> Password for administrator at DOM.COM:
> Warning: Your password will expire in 33 days on Fri 22 Jul 2016 07:52:12
> PM CEST
>
> # ldbsearch -H ldap://debian8DC1 "cb=administrator" -k yes
> Failed to bind - LDAP client internal error: NT_STATUS_INVALID_PARAMETER
> Failed to connect to 'ldap://debian8DC1' with backend 'ldap': (null)
> Failed to connect to ldap://debian8DC1 - (null)
>
> It is possible to keep same or similar configuration used with samba 3 +
> openldap to make querys to ldap, we have many scripts using ldapsearch...
> It is possible keep scripts using ldapsearch?
>
> Thanks
>
>
> 2016-06-17 16:20 GMT+02:00 Trenta sis <trenta.sis at gmail.com>:
>
>> Hi,
>>
>> I'm trying to migrate samba 3 NT domain to samba 4 AD, we have migrated
>> data and it seems correct, but now we need to connect with ldapsearch but
>> always receive errors like
>> ldap_bind: Strong(er) authentication required (8)
>> additional info: BindSimple: Transport encryption required.
>>
>> command used is
>> /usr/bin/ldapsearch -H ldap://server -x -LLL -z 0 -D
>> "uid=user,ou=Users,dc=domain,dc=com" -w "pwd" -b "ou=Users,dc=domain,dc=com"
>>
>> I have tested authentication with ssl from an external application and
>> work OK and seems correctly configured
>>
>> I have tried to run ldapsearch with ssl and without but always receive
>> errors. Using ldapadmin client I can connect with gssapi with port 389, but
>> with ldapsearch I can't work...
>>
>> how can I query samba 4 AD ldap with ldapsearch?
>>
>>
>> Thanks
>>
More information about the samba
mailing list