AD 的 LDAP 代理始终获取无效凭据

AD 的 LDAP 代理始终获取无效凭据

我正在尝试将 LDAP 代理配置到我们的 ActiveDirectory 服务器,但当我尝试测试它是否有效时总是出现错误:

ldap_bind: Invalid credentials (49)
    additional info: 80090308: LdapErr: DSID-0C0903A8, comment: AcceptSecurityContext error, data 52e, v1db1

我正在使用安装了 raspbian 的 RaspberryPI 来执行此操作。

我的slapd配置文件文件如下所示:

# Schema and objectClass definitions
include         /etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/nis.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/misc.schema
include         /etc/ldap/schema/ad.schema

# Where the pid file is put. The init.d script
# will not stop the server if you change this.
pidfile         /var/run/slapd/slapd.pid
# List of arguments that were passed to the server
argsfile        /var/run/slapd/slapd.args

# Support both LDAPv2 and LDAPv3
allow           bind_v2

# Read slapd.conf(5) for possible values
# logfile               /var/log/slapd.log
loglevel        256


# Where the dynamically loaded modules are stored
modulepath      /usr/lib/ldap
moduleload      back_ldap
moduleload      rwm

### Database definition (Proxy to AD)   #########################################
database                ldap
readonly                yes
protocol-version        3
rebind-as-user          yes
uri                     "ldap://192.168.1.247:389"
suffix                  "dc=domain,dc=name"
chase-referrals         yes
idassert-bind           bindmethod=simple
                          binddn="CN=adminauthenticator,OU=Users,DC=domain,DC=name"
                    credentials=xxxxxxxxxxx
                    mode=none
idassert-authzFrom      "*"
overlay                 rwm
rwm-map                 attribute       uid     sAMAccountName
rwm-map                 attribute       mail    proxyAddresses

我是否遗漏了什么或者做错了什么?

相关内容