Hello All,
I'm having trouble getting active directory (2003) authentication to work with cacti 0.8.7g-1 on a ubuntu 10.10 (maverick) machine.
Could someone give me a list with possible things to verify according to following error message?
AUTH LOGIN: LDAP ERROR: Insuffient access
I read a lot about bugs about ad authentication and even saw patches available for different versions (not all official). Is there any patch for the version I use?
Thanx in advance!
Active Directory Authentication
Moderators: Developers, Moderators
-
rony
- Developer/Forum Admin
- Posts: 6022
- Joined: Mon Nov 17, 2003 6:35 pm
- Location: Michigan, USA
- Contact:
Re: Active Directory Authentication
Are you using Specific Searching mode?
[size=117][i][b]Tony Roman[/b][/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
Re: Active Directory Authentication
No, configured in 'no searching' mode.
-
rony
- Developer/Forum Admin
- Posts: 6022
- Joined: Mon Nov 17, 2003 6:35 pm
- Location: Michigan, USA
- Contact:
Re: Active Directory Authentication
Um...
In that mode Cacti simply attempts to bind (Authenticate) to ADS using the username and password. The username is search and replaced against the value in "Distinguished Name (DN)". Example for ADS is "<username>@domain.local", "<username>" will be replaced with the supplied username from the login prompt. Then an attempt to bind will be made.
Make sure that your "Version" is set to "3" and "Encryption" is set to "None".
In that mode Cacti simply attempts to bind (Authenticate) to ADS using the username and password. The username is search and replaced against the value in "Distinguished Name (DN)". Example for ADS is "<username>@domain.local", "<username>" will be replaced with the supplied username from the login prompt. Then an attempt to bind will be made.
Make sure that your "Version" is set to "3" and "Encryption" is set to "None".
[size=117][i][b]Tony Roman[/b][/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
Re: Active Directory Authentication
Yes, idd.
We see the users authenticated on the AD successfully.
I tried removing required group membership, but I still got the same error message.
We see the users authenticated on the AD successfully.
I tried removing required group membership, but I still got the same error message.
Who is online
Users browsing this forum: No registered users and 6 guests