error ldap_simple_bind_s for user authentication

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: "Wollny, Bernd Martin" <bernd.wollny [at] izi.fraunhofer.de>
To: "nss-pam-ldapd-users [at] lists.arthurdejong.org" <nss-pam-ldapd-users [at] lists.arthurdejong.org>
Subject: error ldap_simple_bind_s for user authentication
Date: Thu, 2 Oct 2014 09:05:15 +0000

Hello,

There is a strange Problem while I try to authenticate a user with nslcd

I am Using a Windows server 2013

I can Login to the ldap server.

======== nslcd LOG ================

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: myldap_search(base="dc=ribolution,dc=local", filter="(&(&(objectClass=user)(!(objectClass=computer)))(sAMAccountName=Bernd Wollny))")

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_initialize(ldap://ribolution001.ribolution.local:3268)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_rebind_proc()

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,0)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_simple_bind_s("CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local","***") (uri="ldap://ribolution001.ribolution.local:3268")

----------------------------à login ok

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_result(): CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local

nslcd: [8b4567] <passwd="Bernd Wollny"> CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local: uidNumber: missing

nslcd: [8b4567] <passwd="Bernd Wollny"> DEBUG: ldap_result(): end of results (1 total)

nslcd: [7b23c6] DEBUG: connection from pid=6061 uid=0 gid=0

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: nslcd_pam_authc("Bernd Wollny","sshd","***")

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: myldap_search(base="dc=ribolution,dc=local", filter="(&(&(objectClass=user)(!(objectClass=computer)))(sAMAccountName=Bernd Wollny))")

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_result(): CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: myldap_search(base="CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local", filter="(objectClass=*)")

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_initialize(ldap://ribolution001.ribolution.local:3268)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_rebind_proc()

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,0)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_simple_bind_s("CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local","***") (uri="ldap://ribolution001.ribolution.local:3268")

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: failed to bind to LDAP server ldap://ribolution001.ribolution.local:3268: Invalid credentials: 80090308: LdapErr: DSID-0C0903C5, comment: AcceptSecurityContext error, data 52e, v23f0

-----------------à error

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_unbind()

nslcd: [7b23c6] <authc="Bernd Wollny"> CN=Bernd Wollny,CN=Users,DC=ribolution,DC=local: lookup failed: Invalid credentials

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: myldap_search(base="dc=ribolution,dc=local", filter="(&(&(objectClass=user)(!(objectClass=computer)))(sAMAccountName=Bernd Wollny))")

nslcd: [7b23c6] <authc="Bernd Wollny"> DEBUG: ldap_result(): CN=Bernd Wollny,CN

The binddn are the same

The Base are different

If I am using ldapsearch both searches are successful

With best regards,

Bernd Wollny

Bernd Wollny

Systemadministrator Linux/UNIX

Department of Diagnostics and New Technologies

Fraunhofer Institute for Cell Therapy and Immunology

Perlickstraße 1, 04103 Leipzig

GERMANY

Phone: +49 341 35536 5205
Fax: +49 341 35536 9920
mailto: bernd.wollny@izi.fraunhofer.de

http://www.izi.fraunhofer.de

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

error ldap_simple_bind_s for user authentication, Wollny, Bernd Martin

Prev by Date: Re: Question regarding install of nss-pam-ldapd-0.7.19
Next by Date: Re: Query about authinfo_unavail and user_unknown behaviour
Previous by thread: Re: Question regarding install of nss-pam-ldapd-0.7.19
Next by thread: Cant set up authentication through AD