[Samba] LDAP authentication not working

Andrew Bartlett abartlet at samba.org
Tue Jul 11 07:31:41 UTC 2017

On Mon, 2017-07-10 at 23:18 -0700, Bartra1212 via samba wrote:
> I just tried this ldapsearch command:
> ldapsearch -H ldap://localhost -x
> # extended LDIF
> #
> # LDAPv3
> # base <dc=example,dc=com> (default) with scope subtree
> # filter: (objectclass=*)
> # requesting: ALL
> #
> # search result
> search: 2
> result: 1 Operations error
> text: 00002020: Operation unavailable without authentication

Unlike common configurations with OpenLDAP, Samba and Windows AD
require authentication before you can access the domain tree.

> # numResponses: 1
> seems like a authentication problem.As you can see I added"ldap server
> require strong auth = no" to my smb.conf but it don't work for my problem
> :/..........Has anyone a tip for me?

The setting you set is about allowing simple binds unprotected by SSL,
allowing sessions to be trivially taken over by anyone on the network. 
  (that is why the default is yes).   It isn't about allowing anonymous
access, which is enabled with the same in-directory setting as windows
AD, but which really shouldn't be set. 

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list