News:

We really need your input in this questionnaire

Main Menu
Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - deane

Pages1
#1
General Support / Re: Integration with LDAP question
September 15, 2014, 05:21:30 PM
I actually removed all my config, and put in the exact information for Active directory given in the sample. I still get this same error:

[15-Sep-2014 08:17:42.797] [DEBUG] LDAPConnection::initLDAP(): Connecting to LDAP server
[15-Sep-2014 08:17:44.810] [DEBUG] LDAPConnection::loginLDAP(): LDAP could not login. Error code: Server Down

Which is expected.

However, running tcpdump/Wireshark, I don't see any connection attempts from the system to 10.5.0.35 port 389. It seems net-xms isn't even attempting to make the connection?
#2
General Support / Re: Integration with LDAP question
September 12, 2014, 06:37:14 PM
That is super helpful, thank you!

We are much closer now.

So now with:

var_name   var_value
LdapConnectionString   ldap://10.100.226.9:389
LdapGroupClass   group
LdapMappingDescription   description
LdapMappingFullName   displayName
LdapMappingName   cn
LdapSearchBase   OU=XX Users,DC=XX,DC=XY,DC=local
LdapSearchFilter   (objectClass=*)
LdapSyncInterval   1440
LdapSyncUser   CN=printerldap,CN=Users,DC=XX,DC=XY,DC=local
LdapSyncUserPassword   xxxxx
LdapUserClass   user
LdapUserDeleteAction   1


And debug level of 4, I get this in the log:
[12-Sep-2014 09:34:38.080] [DEBUG] LDAPConnection::initLDAP(): Connecting to LDAP server
[12-Sep-2014 09:34:40.092] [DEBUG] LDAPConnection::loginLDAP(): LDAP could not login. Error code: Server Down

And listening for IP traffic to/from 10.100.226.9 I see no traffic whatsoever :-(
#3
General Support / Re: Integration with LDAP question
September 09, 2014, 11:20:46 PM
Honestly, what I think would work better is a working example set of name value pairs in the documentation for various environments (including Active Directory). It doesn't say which parameters are required, or give example values for most of them.

The issue I am having is that the netXMS server never even contacts my domain controller to pull info. No users are ever put into netXMS. I tried the regular LDAP port as well as the global catalog port

Here are the settings I have. I am using the global catalog port (3268), as I want to authenticate users from multiple domains.

var_name   var_value
LdapConnectionString   ldap://dc1.domain.local:3268
LdapGroupClass   
LdapMappingDescription   Description
LdapMappingFullName   displayName
LdapMappingName   sAMAccountName
LdapSearchBase   OU=SITEA Users,DC=domain,DC=local
LdapSearchFilter      
LdapSyncInterval   120
LdapSyncUser   sitea.domain.local\printerldap
LdapSyncUserPassword   (removed)   
LdapUserClass   x
LdapUserDeleteAction   1
#4
General Support / Re: Integration with LDAP question
September 04, 2014, 10:46:13 PM
I am also having issues trying to get Netxms authenticating Active Directory users via LDAP. The documentation doesn't say much of anything on what typically goes in what fields to get this to work. I turned on debug logging and nothing interesting was logged either. I tried various connection strings and search base/filters.

I am running on 1.2.16.

Thanks,
Dean
Pages1