Solved

Graylog, LDAP bind issue when trying to make the connection, incorporate AD. Please help!

Posted on 2016-08-26
1
143 Views
Last Modified: 2016-08-26
Here is the error message:
MessageType : BIND_RESPONSE
Message ID : 4
    BindResponse
        Ldap Result
            Result code : (INVALID_CREDENTIALS) invalidCredentials
            Matched Dn : ''
            Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 52e, v2580'
Also:
Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 775, v2580'

The server configuration makes a successful connection to Active Directory but cannot bind.
Here are my settings:

Server address: ldap://x.x.x.x:389
username: admin@domain.com
Search Base DN: dc=dc,dc=name,dc=com
User Search Pattern: (objectClass=user)
Display Name attribute: displayName
Group Search Base DN: dc=prod,dc=Admi,dc=Com
Group Search Pattern: (objectClass=group)
Group Name Attribute: cn
Default User Role: Administrator
ALL SEEMS WELL UNTIL...
Login test: Domain Admin
password: xxxxx
Tried: admin@domain.com as well...no luck
User account is fine, not locked out etc and works for everything BUT Graylog. I hit "Test Login":



MessageType : BIND_RESPONSE
Message ID : 4
    BindResponse
        Ldap Result
            Result code : (INVALID_CREDENTIALS) invalidCredentials
            Matched Dn : ''
            Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 775, v2580'
0
Comment
Question by:admitech
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 

Accepted Solution

by:
admitech earned 0 total points
ID: 41772291
Had to reduce the search base dn down to the CN level. Worked fine.
CN=user,OU=whatever,dc=domain,dc=com
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Distinguished username as email address 4 45
SSH in linux 9 71
Activity directory migration 4 23
Granting root permissions to a user (in Debian Jessie) 17 54
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question