<br><font size=2 face="sans-serif">I'm not an expert in AD or LDAP, but
"ou=ActiveUsers,dc=domain,dc=local" doesn't look right to me.
I don't see "ActiveUsers" in either my 2k or 2k3 domain
controllers' schemas. Also, I think your base should be "cn=,dc=,dc="
format not "ou=,dc=,dc=".</font>
<br>
<br><font size=2 face="sans-serif">Can you run "ldapsearch" on
your RT box? The output from ldapsearch -x -h <server>
-b "cn=Users,dc=<domain>,dc=<com|net|etc>" -D
<ldapbinduser> -w <password> sAMAccountName=<domainuser>
would be helpful.</font>
<br><font size=2 face="sans-serif"><br>
--<br>
Eric N. Valor<br>
Information Technology Manager<br>
DaimlerChrysler Research & Technology North America, Inc.<br>
eric.valor@daimlerchrysler.com<br>
1510 Page Mill Road, Palo Alto, CA 94304<br>
CIMS 931-00-00<br>
650-845-2536<br>
<br>
: This Space Intentionally Left Blank :</font>
<br>
<br>
<br>
<br>
<table width=100%>
<tr valign=top>
<td width=40%><font size=1 face="sans-serif"><b>Andrew Hodgson <andrew@plaintalkit.com></b>
</font>
<p><font size=1 face="sans-serif">10/24/2006 11:58 AM</font>
<td width=59%>
<div align=right>
<table width=100%>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">To</font></div>
<td><font size=1 face="sans-serif">rt-users@lists.bestpractical.com</font>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">cc</font></div>
<td><font size=1 face="sans-serif">eric.valor@daimlerchrysler.com</font>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">Subject</font></div>
<td><font size=1 face="sans-serif">Re: [rt-users] Problem configuring LDAP
with AD</font></table></div>
<br>
<table>
<tr valign=top>
<td>
<td></table>
<br></table>
<br>
<br>
<br><font size=2><tt>eric.valor@daimlerchrysler.com wrote:<br>
> <br>
> AFAIK, "inetOrgPerson" doesn't exist in Active Directory.<br>
<br>
I've changed it to "user", which is one of the choices I can
see in <br>
ADSIEdit (the others are organizationalPerson, top, person.)<br>
<br>
> Use the LDAPAttrMap I posted to the Wiki at <br>
> http://wiki.bestpractical.com/index.cgi?LdapAttrMap<br>
<br>
I have done, thank you for the page. I used this page when I set up the
<br>
LDAP overlay originally.<br>
<br>
<br>
> In your RT_SiteConfig.pm make sure you have the correct MatchList
and base:<br>
<br>
Check. My base is an OU (ou=ActiveUsers,dc=domain,dc=local).<br>
<br>
> # A list of RT attrs which can uniquely identify a user,<br>
> # # ordered from most to least preferred.<br>
> Set($LdapRTAttrMatchList, ['Name', 'ExternalContactInfoId',<br>
>
'EmailAddress', 'RealName',<br>
>
'WorkPhone', 'Address1']<br>
<br>
The final entry was set to Address2, so I've changed it to "1".<br>
<br>
<snip...all in check><br>
<br>
I've doubled checked the configuration and I still get the <br>
LDAP_OPERATIONS_ERROR 1. I've tried it with different credentials, and
<br>
different settings for objectClass, but as far as I can see there's no
<br>
effect.<br>
<br>
Any further help appreciated,<br>
<br>
Andrew<br>
</tt></font>
<br>