LDAP setup question

I finally managed to get rid of that bastardized bunch o bits that has been plaguing admins for years, Exchange.  But, the users have grown attached to the GAL, and are whining about the notion of maintaining their own address books.  So, I enabled LDAP on our 2003 x64 domain controller with active directory.  

When I configure a client to look at "users", nothing appears in the address lookups.  I created another group in AD called Contacts, and placed a couple of dummy, test users in there.  They show when the client is set to look at "contacts".

Is there something keeping LDAP and the clients from reading/seeing/using "users"?  With the turnover rate in a non-profit, particularly one as seasonally active as a zoo, it would be great if I didn't have to do double duty creating the user entries twice, so I'd really like to be able to use the "user" group in AD.

Clients are Outlook 2003/2007 and Thunderbird, if it matters.
LVL 11
knoxzooAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David LeeCommented:
Hi, knoxzoo.

Two questions.

1.  Do the users have sufficient permissions to see Users?
2.  What does the LDAP connection string look like?
0
knoxzooAuthor Commented:
Right now I'm testing it out on my machine, and have my intern testing on his.  Both users have full admin privies for the domain, and do most of the domain admin stuff from our workstations.

(generic names used below)

In Thunderbird:

Hostname - server.domain.suffix
Port - 389
Bind DN - MyUsername@domain.suffix

This works...
OU=Contacts,DC=(DomainName),DC=(DomainSuffix)

This doesn't...
OU=Users,DC=(DomainName),DC=(DomainSuffix)


I'm using Thunderbird exclusively on my machine (hate Outleak), so my intern's doing the Outleak thing, along with Thunderbird.  I'll have to get the Outleak stuff from him.  Unfortunately, he's in class today, so it'll have to wait.
0
David LeeCommented:
For Users, isn't the LDAP path
CN=Users,DC=(DomainName),DC=(DomainSuffix)
0
knoxzooAuthor Commented:
That didn't work either.
0
knoxzooAuthor Commented:
I found it.

http://joseph.randomnetworks.com/archives/2006/02/08/active-directory-as-ldap-address-book-for-thunderbird-outlook-and-mailapp/

The instructions in here did it.  It seems to me that we'd tried everything shown here before, but for some reason, this all worked.

Thanks for trying folks.

0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Outlook

From novice to tech pro — start learning today.