hello

Stefan Paetow Stefan.Paetow at jisc.ac.uk
Mon Aug 15 17:06:08 CEST 2016


>hi. I have a fresh install of freeradius on Centos7. I have been trying to
>connect via ldap to active directory for a few days now, but I still get
>this error:
[...]
>Mon Aug 15 10:54:30 2016 : Debug: rlm_ldap (ldap): Connecting to
>xx.x.xx.x:389
>
>Mon Aug 15 10:54:30 2016 : Debug: rlm_ldap: New libldap handle
>0x7f4a86f06d20
>
>Mon Aug 15 10:54:30 2016 : Debug: rlm_ldap (ldap): Waiting for bind
>result...
>
>Mon Aug 15 10:54:30 2016 : Error: rlm_ldap (ldap): Bind credentials
>incorrect: Invalid credentials
>
>Mon Aug 15 10:54:30 2016 : Error: rlm_ldap (ldap): Server said: 80090308:
>LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e,
>v1db1.
[...]
>What I found in google is that it might be a bad pass (52e), but password
>is correct and account is active.

Are you allowed to access the directory on an insecure port (389), i.e.
Are you allowed to do an ldapsearch using ldap://... With that account, or
do you have to use ldaps://?

Stefan Paetow
Moonshot Industry & Research Liaison Coordinator

t: +44 (0)1235 822 125
gpg: 0x3FCE5142
xmpp: stefanp at jabber.dev.ja.net
skype: stefan.paetow.janet

jisc.ac.uk

Jisc is a registered charity (number 1149740) and a company limited by
guarantee which is registered in England under Company No. 5747339, VAT
No. GB 197 0632 86. JiscĀ¹s registered office is: One Castlepark, Tower
Hill, Bristol, BS2 0JA. T 0203 697 5800.





>




More information about the Freeradius-Users mailing list