HPE Community
Operating System - HP-UX
1833780 Members
2474 Online
110063 Solutions
New Discussion

Re: ldap-ux with 2003r2 (problem with proxy user)

 
Richard I Curtis
Frequent Advisor

‎06-30-2008 02:44 AM

‎06-30-2008 02:44 AM

ldap-ux with 2003r2 (problem with proxy user)

Hi,
I have been following the step by step guide in LDAP-UX Client services administrator guide, but I am having some problems...

I have AD configured, and have now created a proxy user:
CN=unixprxy,CN=uxusers,DC=mydomain,DC=com
I have delegated the read access to uid, gid etc (as described), and have added the user to the "Pre Windows 2000 compatible" group.

When I run setup, after choosing "Simple Auth", I choose enter "CN=uxusers,DC=mydomain,DC=com".
Finally, when asked for Proxy User DN, I am entering "CN=unixprxy,CN=uxusers,DC=mydomain,DC=com" followed by the AD password for the unixprxy user.
I keeps failing with "Unknown error (-14)". I have tried reentering the details with ldap_proxy_config -i, but it still fails.

Is there anything obvious I have missed here?
0 Kudos
2 REPLIES 2
Richard I Curtis
Frequent Advisor

‎06-30-2008 02:50 AM

‎06-30-2008 02:50 AM

Re: ldap-ux with 2003r2 (problem with proxy user)

Forgot to mention, if I use "CN=Administrator,CN=Users,DC=mydomain,DC=com", then put in the Adminsitrators" password - it works OK...

Obviously that is not ideal as we don't want the Domain admin to be the proxy user! I am guessing it is something missing from the permissions for the proxy user
0 Kudos
Richard I Curtis
Frequent Advisor

‎07-02-2008 10:49 AM

‎07-02-2008 10:49 AM

Re: ldap-ux with 2003r2 (problem with proxy user)

I have solved this myself now so for future reference, the problem was I was putting in the wrong CN.. when I used ADSI editor, I realised the way AD had it stored did not match what I was putting in.

All OK now...I didnt appreciate how useful ADSI is when it comes to schema naming.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.