Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    troubleshooting LDAP authentication

    Scheduled Pinned Locked Moved OpenVPN
    15 Posts 3 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • KOMK
      KOM
      last edited by

      Sorry, I don't have any other specific solutions as I don't use LDAP auth here.

      adamwA 1 Reply Last reply Reply Quote 0
      • M
        mcury
        last edited by mcury

        Try to set this at your smb.conf in your AD, at global parameters
        ldap server require strong auth = no

        then set a password without any special character

        dead on arrival, nowhere to be found.

        adamwA 1 Reply Last reply Reply Quote 0
        • adamwA
          adamw @mcury
          last edited by

          @mcury that didn't help

          1 Reply Last reply Reply Quote 1
          • adamwA
            adamw @KOM
            last edited by

            @KOM

            I'm also seeking help on Samba mailing lists and one of Samba guys has asked "It might also help if you can show how pfsense is trying to connect to AD."

            Can you provide some more details on what exactly happens to /system_authservers.php -> "Bind credentials" ?

            KOMK 1 Reply Last reply Reply Quote 1
            • KOMK
              KOM @adamw
              last edited by

              @adamw I'd love to help you but I'm not a coder and I have no idea how any of that works. I was just trying to help with references you might have missed.

              1 Reply Last reply Reply Quote 0
              • adamwA
                adamw
                last edited by

                I've solved my problem but can't post my (short) reply:

                ERROR
                Post content was flagged as spam by Akismet.com
                
                1 Reply Last reply Reply Quote 1
                • KOMK
                  KOM
                  last edited by

                  I bumped your reputation by 1. Try again.

                  1 Reply Last reply Reply Quote 0
                  • adamwA
                    adamw
                    last edited by

                    The harder I try the fussier the antispam engine gets.
                    Now I can't even post 4 lines with a single code quote, no links or email addresses :(
                    Maybe I'll let it cool down a bit and try again on Monday.

                    1 Reply Last reply Reply Quote 1
                    • KOMK
                      KOM
                      last edited by

                      OK now you're at 5. I think I remember that 5 was the lucky number. Please try again.

                      1 Reply Last reply Reply Quote 0
                      • adamwA
                        adamw
                        last edited by

                        LDAP browser tool helped a bit and allowed me to see a more specific error:

                        [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1]
                        

                        After a bit of research I've managed to connect using account@domain.co.uk format in "Bind credentials" username.

                        This might be worth adding to the pfSense-LDAP troubleshooting guide.

                        1 Reply Last reply Reply Quote 2
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.