Koozali.org: home of the SME Server
Obsolete Releases => SME Server 8.x => Topic started by: girkers on October 11, 2011, 05:20:44 AM
-
I have a Cyberoam UTM device and I am trying to connect it to the LDAP server on my SME8 box however I can't seem to get the connection right. The fields on my UTM are:
Server Name caine
Server IP 192.168.254.10
Port 389
Version 3
Anonymous Login No
Administrator admin
Password *******
Base DN ou=Users,dc=gkcomputerservices,dc=com
Authentication Attribute uid
Now when I try to test the connection, this is in the ldap log:
2011-10-11 13:02:10.175305500 conn=89 fd=13 ACCEPT from IP=192.168.254.254:49529 (IP=0.0.0.0:389)
2011-10-11 13:02:10.175308500 bind: invalid dn (admin,ou=Users,dc=gkcomputerservices,dc=com)
2011-10-11 13:02:10.175310500 conn=89 op=0 RESULT tag=97 err=34 text=invalid DN
2011-10-11 13:02:10.175556500 conn=89 op=1 UNBIND
2011-10-11 13:02:10.175558500 conn=89 fd=13 closed
If I try it anonymously I get this result:
2011-10-11 13:18:47.342256500 conn=94 fd=13 ACCEPT from IP=192.168.254.254:48557 (IP=0.0.0.0:389)
2011-10-11 13:18:47.342259500 conn=94 op=0 BIND dn="ou=Users,dc=gkcomputerservices,dc=com" method=128
2011-10-11 13:18:47.342261500 conn=94 op=0 RESULT tag=97 err=53 text=unauthenticated bind (DN with no password) disallowed
2011-10-11 13:18:47.342780500 conn=94 op=1 UNBIND
2011-10-11 13:18:47.342783500 conn=94 fd=13 closed
Could anyone suggest how I can query the ldap server from a remote device.
Thanks
Girkers
-
2011-10-11 13:02:10.175308500 bind: invalid dn (admin,ou=Users,dc=gkcomputerservices,dc=com)
The problem is here, your device uses a wrong DN, it should be uid=admin,ou=Users,dc=gkcomputerservices,dc=com (the uid= before admin)
Regards, Daniel
-
That being the case, is there a RFC that tells you how a standard LDAP query is supposed to be formed so that I can alert the developers to how it is supposed to be.
Thanks