LDAP not working for an OU
Me and another guy are domain admins. LDAP has worked well for us. But for some reason, he and I can not log into Kace with our domain accounts. I found that If I move my AD account to a different OU, presto; I can log in. Move it back and no dice.
What am I missing here? What do I need to look for?
Answers (3)
Are you pointing to the root of the domain or targetting a specific OU in the Search Base DN on the Control Panel > User Authentication > External LDAP Server Authentication > User Server screen? Just for reference, I'm not using the Admin Server or Read-Only Admin Server screens at all (they are defaults with KACE default info in the fields).
For my Search Base DN, I have (for the Company.Net domain):
DC=Company,DC=Net
For my search filter, I have:
(&(&(&(samaccountname=KBOX_USER)(objectclass=user))(department=*))))
I added the department=* as (in my setup) only non-utility user accounts will have this field populated in ADUC, but this might be an idea for something you could try.
Hope something there helps!
John
Also make sure the ldap user you are attaching with has read rights to all OU's
Here is a really good article explaining ldap setup with multiple OU's if you are still looking for an answer.
