AD 2008 R2 + Zentyal

[thiagotgc]

Hello friends okay?

I currently have a server Windows Server 2008 R2 (x64) running AD.

But I'd like my Zentyal 2.0-2 synchronize users and passwords from my
2008.

I've done this:

http://trac.zentyal.org/wiki/Document/Documentation/EBoxActiveDirectorySync

But it will not, I've tried everything, anyone know what might be?

Look at this:
2010/11/10 15:05:02 ERROR> Ldap.pm:1090 EBox::Ldap::safeBind - Couldn't bind to LDAP server, result code: 49
2010/11/10 15:05:02 ERROR> ebox-ad-sync:47 main::__ANON__ - [ad-sync] Can't bind to 192.168.0.7 as CN=eboxadsync,CN=Users,DC=lencois,DC=local

[thiagotgc]

Friends, no one has any idea what might be?

[thiagotgc]

Up,

[eboxbuggy]

wrong AD password? secret key?

[thiagotgc]

No, it sure will not, because I redid several times, including the password of 16 digits

[thiagotgc]

Friends, do not get that together?

Can somebody help me?

[eboxbuggy]

try to do it SLOWLY all over again ... use the same settings included in the screenshots to minimize errors. if it doesn't work it might be a bug

[eboxbuggy]

did you remove apparmor?

[thiagotgc]

Well, then, is indeed a bug.

Sorry!

Cause I'm trying to make this work is two weeks without success.

Remembering that I'm testing with Windows Server 2008 R2 (x64) and 64-bit and 32 Zentyal 2.0-2

Just missing it so I can finish my project.

Remembering that I'm following the guide EXACTLY

[thiagotgc]

Friends, though Zentyal has its free version, and is not obliged to help anyone, unfortunately commitment to helping others here, is little.

Unfortunately.

However, congratulations on keeping the project and I hope always to be contributing, because I use the ebox to several years.

Referring to my problem.

I've decided.

It turns out that the User MUST "eboxadsync" MUST be in the "users" group. Ie you can not leave it in a separate OU or something, even if he is Administrator.

I just put the User eboxadsyn in place, and everything worked perfectly.

Now this approved Zentyal synchronizes users with AD 2008 R2 (Windows Server 2008 R2 x64)

Thanks to all

[thiagotgc]

He is syncing, but is giving many errors, including passwords,
are being synchronized. Users only.

[thiagotgc]

Ninguem?

[thiagotgc]

I opened a ticket.

http://trac.zentyal.org/ticket/2557

[thiagotgc]

heloo

=(

[bamalam]

Did you try and do a search such as the following:
        http://www.google.com/#hl=en&q=ldap+bind+error+49+Active+Directory
to get ideas as to what the problem is if you get error code 49.

In the Google result you will see a reference to Microsoft error codes:
        http://support.microsoft.com/kb/218185
where in the list is one that matches your error:
    LDAP_INVALID_CREDENTIALS    0x31 (49 in decimal)
which says the the supplied credentials are invalid.

This means that it is likely one of:

• User name is invalid - eboxadsync name not setup?
• User password is wrong - are you sure that you got it right?
• The DN provided is wrong - the DN bit is displayed in the error message

So it is likely to be the third option where the DN is displayed as:
      CN=eboxadsync,CN=Users,DC=lencois,DC=local
from the error message. Now I'm not even sure which server is which but you should be able to tell from the IP address given in the error message.

If it is the Windows 2008 server does it recognise itself as in the site lencois.local or does the lencois refer to the server name.

The other thing is it might be expecting OU=Users instead of CN=Users in the DN.