Hi all,
I am testing a OpenLDAP act as LDAP proxy server using meta-backend. My back-end server contain AD servers and some OpenLDAP servers.
When this OpenLDAP server connects to other OpenLDAP servers to query data, everything is okie, I get any data as I desire. But, when I use this server query to AD server, the return code is always Operation Error. I debug this process and I get a error which AD server return to my OpenLDAP server "errorMessage: 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece" although I had configured a binddn and bindpw for my OpenLDAP server. But if I using ldapsearch, query directly to AD server and specify username and password, everything is okie :-(. Here is a piece of my sldapd.conf:
database meta
suffix "dc=abc,dc=com "
uri "ldap://10.3.0.24/dc=abc,dc=com "
binddn "cn=root,dc=abc,dc=com "
bindpw 123
suffix "dc=xyz,dc=net"
uri "ldap://10.3.0.26/dc=xyz,dc=net"
binddn "cn=openldap,cn=Users,dc=xyz,dc=net"
bindpw 123
map attribute uid sAMAccountName
map attribute cn name
map attribute mail userPrincipalName
map objectClass account user
map attribute *
Note: 10.3.0.24 is a OpenLDAP server IP and 10.3.0.26 is AD server IP.
I used openldap@xyz.net to query data from AD server directly and It is okie. But in this case, I got an error.
Any idea for my problem?
Thanks and best regards,