Issues with LDAP config

Samuel_Adu_Asare · August 5, 2009, 6:38pm

My AD name is (ad.amal.com.gh) and the below are my entry for the LDAP config

**Base DN **cn=Users;dc=ad,dc=amal,dc=com,dc=gh.

**Administrator DN **cn=Administrator,cn=users,dc=ad,dc=amal,dc=com,dc=gh.

after the above config when I test it I keep getting the below error

Test: Connection Settings

Status: Error

Error authenticating with the LDAP server. Check supplied credentials.

what am I not doing right please I urgent help.

Nismoto_San · August 6, 2009, 1:35am

I just finished setting this up and had similar problems.

My PDC hostname is ad1.domain.org

So my base DN is cn=users,dc=domain,dc=org (“ad1” is not part of my domain name)

All 3 of these worked for my administrator DN:

cn=Administrator,cn=users,dc=domain,dc=org

domain**\Administrator**

Administrator@domain.org

With the AD settings that you specified, try this:

Also, on the Server Settings page, make sure you set the domain = to your actual domain. If you don’t, it will cause problems when you go to create your admin account at the end of the setup.

Good luck!

Samuel_Adu_Asare · August 6, 2009, 1:04pm

you solution worked thanks so much sir!

After I had compeleted the steps this is the error I have been getting

Setup Progress
Language Selection
Server Settings
Database Settings
Profile Settings
Admin Account

Administrator Account

**No username was provided or the specified username was not found. **

Choose one or more users from your LDAP directory to be administrators by entering their usernames.

Even though the username I used is a user in the active directory.

Please any help.

Thanks

NO_MESSAGES_OR_FRIEN · August 6, 2009, 1:09pm

it depends on your tree configuration. if you used cn=users,dc=domain,dc=com or something similar as your base DN you locked openfire to only look at the default Users container of AD. Best practices for AD is to not create new users in this container. My guess is your users are in a OU found elsewhere in the tree. Check your settings in the AD tool AD Users and Computers found on your domain controller.

use this as a guide: http://www.igniterealtime.org/community/docs/DOC-1554

Samuel_Adu_Asare · August 6, 2009, 1:46pm

@Todd Getz are saying I should creat a new user or what ? please help me to understand what exaclty I should do to it work.

Thank you.

speedy · August 6, 2009, 1:52pm

you could also just have it read from the top

DC=amal,DC=com,DC=gh

NO_MESSAGES_OR_FRIEN · August 6, 2009, 2:12pm

If all your users are not located in the default Users container in AD you need to remove that part of your baseDN. In other words delete the cn=Users, from the baseDN.