Re: Unix authentication in corporate AD

On 01/09/10 12:05 -0400, Edsall, William (WJ) wrote:

Hello, Just a few questions regarding authenticating OpenLDAP (centos 5.4) to windows active directory.

I'm able to bind, I've confirmed this by changing the bind password, and then the bind attempt fails. However I'm unable to authenticate.

Could you clarify a few items?

Are you binding directly to an OpenLDAP server or an Active Directory Server?

Which password are you changing, the user's password in Active Directory?

My attempt is always as follows: su: user blabla does not exist

With regards to OpenLDAP, a successful bind is a success authentication.

With something like su, your trouble may be related to a 3rd party PAM or NSS module. How does su authenticate in your environment?