You'll need to attempt binding with the ldapsearch to verify you can even reach your servers. See https://help.ubuntu.com/community/ActiveDirectoryHowto for full details. Your command should look more like:
ldapsearch -h mydomaincontroller.domain.addy -x -b " DC=domain,DC=addy" -D "CN=sampleUsertoBindWith,OU=sampleUserLocation,DC=domain,DC=addy" -W "sAMAccountName=yourusertosearch" We're trying to establish that you CAN reach and query your domain from the relay... As for ad.py, just update both if you're unsure (not ad.pyc - that's compiled byte code)... you may find one is symlinked. I don't know how that distribution is configured. Backup the originals just in case. From: [email protected] [mailto:[email protected]] On Behalf Of Frederik Vande Rieviere Sent: Monday, April 08, 2013 9:46 AM To: Baruwa users list Subject: Re: [Baruwa] question concerning AD authentication * Can you confirm there's nothing preventing access between the Baruwa relay and your AD domain controller? o See 'TestQuery Linux' section for details Output of : ldapsearch -x -h mydomaincontroller.domain.addy # extended LDIF # # LDAPv3 # base <> (default) with scope subtree # filter: (objectclass=*) # requesting: ALL # # search result search: 2 result: 1 Operations error text: 00000000: LdapErr: DSID-0C090627, comment: In order to perform this ope ration a successful bind must be completed on the connection., data 0, vece # numResponses: 1 o Can you attempt to update to the latest ad.py from Git? Your command is ambigious ;-) I have several ad.py on the system. Which one do I need to replace? Just one, or all? /usr/lib/pymodules/python2.6/baruwa/auth/ad.py /usr/lib/pymodules/python2.6/baruwa/auth/ad.pyc /usr/share/pyshared/baruwa/auth/ad.py
_______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056
