[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

LDAP setup question

Posted on 2008-11-04
5
Medium Priority
?
562 Views
Last Modified: 2009-01-12
I finally managed to get rid of that bastardized bunch o bits that has been plaguing admins for years, Exchange.  But, the users have grown attached to the GAL, and are whining about the notion of maintaining their own address books.  So, I enabled LDAP on our 2003 x64 domain controller with active directory.  

When I configure a client to look at "users", nothing appears in the address lookups.  I created another group in AD called Contacts, and placed a couple of dummy, test users in there.  They show when the client is set to look at "contacts".

Is there something keeping LDAP and the clients from reading/seeing/using "users"?  With the turnover rate in a non-profit, particularly one as seasonally active as a zoo, it would be great if I didn't have to do double duty creating the user entries twice, so I'd really like to be able to use the "user" group in AD.

Clients are Outlook 2003/2007 and Thunderbird, if it matters.
0
Comment
Question by:knoxzoo
  • 3
  • 2
5 Comments
 
LVL 76

Expert Comment

by:David Lee
ID: 22921738
Hi, knoxzoo.

Two questions.

1.  Do the users have sufficient permissions to see Users?
2.  What does the LDAP connection string look like?
0
 
LVL 11

Author Comment

by:knoxzoo
ID: 22923550
Right now I'm testing it out on my machine, and have my intern testing on his.  Both users have full admin privies for the domain, and do most of the domain admin stuff from our workstations.

(generic names used below)

In Thunderbird:

Hostname - server.domain.suffix
Port - 389
Bind DN - MyUsername@domain.suffix

This works...
OU=Contacts,DC=(DomainName),DC=(DomainSuffix)

This doesn't...
OU=Users,DC=(DomainName),DC=(DomainSuffix)


I'm using Thunderbird exclusively on my machine (hate Outleak), so my intern's doing the Outleak thing, along with Thunderbird.  I'll have to get the Outleak stuff from him.  Unfortunately, he's in class today, so it'll have to wait.
0
 
LVL 76

Expert Comment

by:David Lee
ID: 22946152
For Users, isn't the LDAP path
CN=Users,DC=(DomainName),DC=(DomainSuffix)
0
 
LVL 11

Author Comment

by:knoxzoo
ID: 22989023
That didn't work either.
0
 
LVL 11

Accepted Solution

by:
knoxzoo earned 0 total points
ID: 22989218
I found it.

http://joseph.randomnetworks.com/archives/2006/02/08/active-directory-as-ldap-address-book-for-thunderbird-outlook-and-mailapp/

The instructions in here did it.  It seems to me that we'd tried everything shown here before, but for some reason, this all worked.

Thanks for trying folks.

0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
Take a look at these 6 Outlook Email management tools which can augment the working and performance of Microsoft Outlook to give you a more rewarding emailing experience.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

868 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question