Solved

Graylog, LDAP bind issue when trying to make the connection, incorporate AD. Please help!

Posted on 2016-08-26
1
77 Views
Last Modified: 2016-08-26
Here is the error message:
MessageType : BIND_RESPONSE
Message ID : 4
    BindResponse
        Ldap Result
            Result code : (INVALID_CREDENTIALS) invalidCredentials
            Matched Dn : ''
            Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 52e, v2580'
Also:
Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 775, v2580'

The server configuration makes a successful connection to Active Directory but cannot bind.
Here are my settings:

Server address: ldap://x.x.x.x:389
username: admin@domain.com
Search Base DN: dc=dc,dc=name,dc=com
User Search Pattern: (objectClass=user)
Display Name attribute: displayName
Group Search Base DN: dc=prod,dc=Admi,dc=Com
Group Search Pattern: (objectClass=group)
Group Name Attribute: cn
Default User Role: Administrator
ALL SEEMS WELL UNTIL...
Login test: Domain Admin
password: xxxxx
Tried: admin@domain.com as well...no luck
User account is fine, not locked out etc and works for everything BUT Graylog. I hit "Test Login":



MessageType : BIND_RESPONSE
Message ID : 4
    BindResponse
        Ldap Result
            Result code : (INVALID_CREDENTIALS) invalidCredentials
            Matched Dn : ''
            Diagnostic message : '80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 775, v2580'
0
Comment
Question by:admitech
1 Comment
 

Accepted Solution

by:
admitech earned 0 total points
Comment Utility
Had to reduce the search base dn down to the CN level. Worked fine.
CN=user,OU=whatever,dc=domain,dc=com
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

1. Introduction As many people are interested in Linux but not as many are interested or knowledgeable (enough) to install Linux on their system, here is a safe way to try out Linux on your existing (Windows) system. The idea is that you insta…
Resolve DNS query failed errors for Exchange
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now