> You should create a user in AD for nss-ldap and extract a keytab for it > (samba-tool domain exportkeytab --principal=....) and configure nss-ldap > to use that keytab for authenticating. Most probably you aren't allowed > to bind anonymously to your AD server (you can try with ldapsearch -x) LDAP works with an anonymous bind. You need the Kerberos keytab for authentication though.
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba