[EMAIL PROTECTED] wrote:
Thanks for the help guys, it works! I used the ldap.set_option(ldap.OPT_REFERRALS, 0) from http://peeved.org/blog/2007/11/20/
Hmm, maybe I should generally switch off referral chasing in python-ldap forcing applications to enable it if needed overriding libldap's default. I did this already for LDAPObject.protocol_version where libldap's default is LDAPv2 and python-ldap sets it to LDAPv3 in LDAPObject.__init__(). Although this was an incompatible change no-one complained.
immedialtey after import, then did the initialize trace_level=2 and did the simple_bind_s. I was able to search and get the results. That trace_level thing is nice, i'm sure i will be debugging this more as i move forward :) Not sure if this is an AD thing or just something i needed to do with our particular server/config.
Basically the concept of LDAPv3 referrals is broken since there's no concept for specifying how to bind to the referral's target without a-priori local configuration. See also an old posting to news:microsoft.public.windows.server.active_directory related to this:
http://groups.google.com/group/microsoft.public.windows.server.active_directory/msg/d061e0398cc366a5 Ciao, Michael. -- http://mail.python.org/mailman/listinfo/python-list