Problem with ldapsearch

From: Werner.Rost@zf.com
Date: Tue Feb 14 2006 - 08:38:50 EST

• Next message: Derek Gatherer: "SUMMARY: Tru64 make and GNU make"
• Previous message: Christian Wessely: "Time to prepare a long-term migration?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi gurus,

hope somone can help.

OS: Tru64 5.1A Patchkit 6
IAEOLDAP590 installed OpenLDAP 2.0.23 (Directory Services)

Now I want to connect to our Windows 2003-AD server 192.10.13.5.

Trying with ldapsearch leads to an error:

     /usr/internet/openldap/bin/ldapsearch \
           -h 192.10.13.5 \
           -D "cn=admin,ou=Users,dc=emea,dc=zf-world,dc=com" \
           -w "admin-password" \
           -b "ou=DE,dc=emea,dc=zf-world,dc=com"

gives follwing error message:

     ldap_bind: Invalid credentials
             additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

Same error with option "-x".

What goes wrong?

Using debug mode "-d 9" gives:

ldap_create
ldap_bind_s
ldap_simple_bind_s
ldap_sasl_bind_s
ldap_sasl_bind
ldap_send_initial_request
ldap_new_connection
ldap_int_open_connection
ldap_connect_to_host: 192.10.13.5
ldap_new_socket: 3
ldap_prepare_socket: 3
ldap_connect_to_host: Trying 192.10.13.5:389
ldap_connect_timeout: fd: 3 tm: -1 async: 0
ldap_ndelay_on: 3
ldap_is_sock_ready: 3
ldap_ndelay_off: 3
ldap_open_defconn: successful
ldap_send_server_request
ber_flush: 69 bytes to sd 3
ldap_result msgid 1
ldap_chkResponseList for msgid=1, all=1
ldap_chkResponseList returns NULL
wait4msg (infinite timeout), msgid 1
wait4msg continue, msgid 1, all 1
** Connections:
* host: 192.10.13.5 port: 389 (default)
  refcnt: 2 status: Connected
  last used: Tue Feb 14 14:33:59 2006

** Outstanding Requests:
 * msgid 1, origid 1, status InProgress
   outstanding referrals 0, parent count 0
** Response Queue:
   Empty
ldap_chkResponseList for msgid=1, all=1
ldap_chkResponseList returns NULL
do_ldap_select
read1msg: msgid 1, all 1
ber_get_next
ber_get_next: tag 0x30 len 103 contents:
ldap_read: message type bind msgid 1, original id 1
ber_scanf fmt ({iaa) ber:
read1msg: 0 new referrals
read1msg: mark request completed, id = 1
request 1 done
res_errno: 0, res_error: <>, res_matched: <>
ldap_free_request (origid 1, msgid 1)
ldap_free_connection
ldap_free_connection: refcnt 1
ldap_parse_result
ber_scanf fmt ({iaa) ber:
ber_scanf fmt (}) ber:
ldap_msgfree
ldap_perror
ldap_bind: Invalid credentials
        additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

Werner Rost

• Next message: Derek Gatherer: "SUMMARY: Tru64 make and GNU make"
• Previous message: Christian Wessely: "Time to prepare a long-term migration?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:50:28 EDT