<div dir="ltr">Usually, in AD, the beginning of the principal name is the same as the sAMAccountName, have you tried that in the mapping for userid?<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, May 5, 2015 at 4:37 AM, KIS ISM <span dir="ltr"><<a href="mailto:ISM@kis.in" target="_blank">ISM@kis.in</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div link="#0563C1" vlink="#954F72" lang="EN-US">
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Hi,<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">I’m having such a hard time to get ldap with AD (on Windows Server 2012 R2) to work – now trying on 3.18.3<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Koha login does see whether username/password is correct but exists with error on correct username/password.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Yes, I changed <userid is="cn"></userid> and <principal_name>%<a href="mailto:s@kis.in" target="_blank">s@kis.in</a></principal_name> to all the different variations I did find no the net. No success.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Does anyone have any ideas? <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Rudy Wuthrich, Kodaikanal International School<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">This is my ldap part from koha-config.xml<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><useldapserver>1</useldapserver><!-- see C4::Auth_with_ldap for extra configs you must add if you want to turn this on --><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><ldapserver id="ldapserver" listenref="ldapserver"><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><hostname>ldaps://<a href="http://serad1.kis.in" target="_blank">serad1.kis.in</a></hostname><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><base>OU=KISaaaa,OU=KISbbbb,DC=kis,DC=in</base><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif" lang="DE-CH"><user>CN=ldapuser,DC=kis,DC=in</user><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><pass>password</pass><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><replicate>1</replicate><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><update>1</update><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><auth_by_bind>1</auth_by_bind><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><principal_name>%<a href="mailto:s@kis.in" target="_blank">s@kis.in</a></principal_name><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><mapping><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><firstname is="givenname"></firstname><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><surname is="sn"> </surname><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><address is="">KIS</address><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><userid is="cn"></userid><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><password is=""></password><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><email is="mail"></email><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><phone is=""></phone><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"></mapping><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Here is what happens:<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">When I try with wrong username/password
<u></u><u></u></span></p>
<p style="margin-left:40.5pt">
<u></u><span style="font-size:10.0pt;font-family:Wingdings"><span>è<span style="font:7.0pt "Times New Roman"">
</span></span></span><u></u><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"> You entered an incorrect <u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">With correct username/password<u></u><u></u></span></p>
<h1><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">Software error:<u></u><u></u></span></h1>
<pre><span style="font-family:"Verdana",sans-serif">LDAP search failed to return object : 0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of:<u></u><u></u></span></pre>
<pre><span style="font-family:"Verdana",sans-serif"> 'OU=KISStaff,DC=kis,DC=in'<u></u><u></u></span></pre>
<pre><span style="font-family:"Verdana",sans-serif"> at /usr/share/koha/lib/C4/Auth_with_ldap.pm line 92.<u></u><u></u></span></pre>
<p><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">For help, please send mail to the webmaster (<a href="mailto:[no%20address%20given]" target="_blank">[no address given]</a>), giving this error message and the time and date of the error.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">And from the opac-error.log<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">[Tue May 05 15:57:37 2015] [error] [client 172.16.98.24] [Tue May 5 15:57:37 2015] <a href="http://opac-user.pl" target="_blank">opac-user.pl</a>: LDAP search failed to return object : 0000208D: NameErr: DSID-03100238, problem
2001 (NO_OBJECT), data 0, best match of:, referer: <a href="http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl" target="_blank">http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl</a><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">[Tue May 05 15:57:37 2015] [error] [client 172.16.98.24] [Tue May 5 15:57:37 2015] <a href="http://opac-user.pl" target="_blank">opac-user.pl</a>: \t'OU=KISStaff,DC=kis,DC=in', referer: <a href="http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl" target="_blank">http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl</a><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif">[Tue May 05 15:57:37 2015] [error] [client 172.16.98.24] [Tue May 5 15:57:37 2015] <a href="http://opac-user.pl" target="_blank">opac-user.pl</a>: , referer: <a href="http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl" target="_blank">http://172.16.60.73:8000/cgi-bin/koha/opac-user.pl</a><u></u><u></u></span></p>
</div>
</div>
<br>_______________________________________________<br>
Koha-devel mailing list<br>
<a href="mailto:Koha-devel@lists.koha-community.org">Koha-devel@lists.koha-community.org</a><br>
<a href="http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-devel" target="_blank">http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-devel</a><br>
website : <a href="http://www.koha-community.org/" target="_blank">http://www.koha-community.org/</a><br>
git : <a href="http://git.koha-community.org/" target="_blank">http://git.koha-community.org/</a><br>
bugs : <a href="http://bugs.koha-community.org/" target="_blank">http://bugs.koha-community.org/</a><br></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature"><div dir="ltr"><div><div>Michael Hafen<br></div>Washington County School District Technology Department<br></div>Systems Analyst<br><div><br><img src="http://logos.washk12.org/100year.png"><br></div></div></div>
</div>