Reputation: 1647
ldapsearch: Invalid credentials
I am trying to authenticate against our institutional LDAP server with the command ldapsearch. My user info in LDAP is shown in the following image![1]](https://i.sstatic.net/64f7r.jpg)
I used this command below to search by my DN:
ldapsearch -x -H ldap://ldap.mdanderson.edu:389 -D "CN=Djiao,OU=Institution,OU=People" -b DC=mdanderson,DC=edu -w xxxyyyzzz
However I got the error:
ldap_bind: Invalid credentials (49)
additional info: 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1
What is wrong with my ldapsearch command?
Upvotes: 4
Views: 44942
Answers (3)
Reputation: 11
Since I had this issue with ldapsearch to bind to a remote DC, I used the other available syntax for the user Distinguished Name
ldapsearch -x -D '<USER>@<SUB_DOMAIN>.<TLD>' -w '' -H 'ldap://<DC_IP>' -b 'dc=<SUB_DOMAIN>,dc=<TLD>'
I hope this would help anyone.
Upvotes: 1
Reputation: 151
I got similar error but it was fixed after using -D user@domain like:
Upvotes: 15
Reputation: 900
The bind DN is not complete in your command. It should end with DC=mdanderson,DC=edu. So, it is likely that it should be: CN=Djiao,OU=Institution,OU=People,DC=mdanderson,DC=edu
In Active Directory, though, users are typically under the CN=users tree (I don't see your tree hiearchy). So, the bind DN (the DN after the -D argument) may have to be:
CN=Djiao,OU=Institution,CN=Users,DC=mdanderson,DC=edu
Upvotes: 6
Related Questions
- Authenticating against active directory using python + ldap
- LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1
- ldapauth-fork InvalidCredentialsError
- ldap_simple_bind: Invalid credentials
- Authentication error 49 52e with jndi in a java application- invalid token
- Where can I find a listing of LDAP Active directory messages and there meanings?
- LDAP Authentication with AD