我正在尝试将 LDAP 代理配置到我们的 ActiveDirectory 服务器,但当我尝试测试它是否有效时总是出现错误:
ldap_bind: Invalid credentials (49)
additional info: 80090308: LdapErr: DSID-0C0903A8, comment: AcceptSecurityContext error, data 52e, v1db1
我正在使用安装了 raspbian 的 RaspberryPI 来执行此操作。
我的slapd配置文件文件如下所示:
# Schema and objectClass definitions
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/misc.schema
include /etc/ldap/schema/ad.schema
# Where the pid file is put. The init.d script
# will not stop the server if you change this.
pidfile /var/run/slapd/slapd.pid
# List of arguments that were passed to the server
argsfile /var/run/slapd/slapd.args
# Support both LDAPv2 and LDAPv3
allow bind_v2
# Read slapd.conf(5) for possible values
# logfile /var/log/slapd.log
loglevel 256
# Where the dynamically loaded modules are stored
modulepath /usr/lib/ldap
moduleload back_ldap
moduleload rwm
### Database definition (Proxy to AD) #########################################
database ldap
readonly yes
protocol-version 3
rebind-as-user yes
uri "ldap://192.168.1.247:389"
suffix "dc=domain,dc=name"
chase-referrals yes
idassert-bind bindmethod=simple
binddn="CN=adminauthenticator,OU=Users,DC=domain,DC=name"
credentials=xxxxxxxxxxx
mode=none
idassert-authzFrom "*"
overlay rwm
rwm-map attribute uid sAMAccountName
rwm-map attribute mail proxyAddresses
我是否遗漏了什么或者做错了什么?