<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:x="urn:schemas-microsoft-com:office:excel" xmlns:p="urn:schemas-microsoft-com:office:powerpoint" xmlns:a="urn:schemas-microsoft-com:office:access" xmlns:dt="uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" xmlns:s="uuid:BDC6E3F0-6DA3-11d1-A2A3-00AA00C14882" xmlns:rs="urn:schemas-microsoft-com:rowset" xmlns:z="#RowsetSchema" xmlns:b="urn:schemas-microsoft-com:office:publisher" xmlns:ss="urn:schemas-microsoft-com:office:spreadsheet" xmlns:c="urn:schemas-microsoft-com:office:component:spreadsheet" xmlns:odc="urn:schemas-microsoft-com:office:odc" xmlns:oa="urn:schemas-microsoft-com:office:activation" xmlns:html="http://www.w3.org/TR/REC-html40" xmlns:q="http://schemas.xmlsoap.org/soap/envelope/" xmlns:rtc="http://microsoft.com/officenet/conferencing" xmlns:D="DAV:" xmlns:Repl="http://schemas.microsoft.com/repl/" xmlns:mt="http://schemas.microsoft.com/sharepoint/soap/meetings/" xmlns:x2="http://schemas.microsoft.com/office/excel/2003/xml" xmlns:ppda="http://www.passport.com/NameSpace.xsd" xmlns:ois="http://schemas.microsoft.com/sharepoint/soap/ois/" xmlns:dir="http://schemas.microsoft.com/sharepoint/soap/directory/" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:dsp="http://schemas.microsoft.com/sharepoint/dsp" xmlns:udc="http://schemas.microsoft.com/data/udc" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:sub="http://schemas.microsoft.com/sharepoint/soap/2002/1/alerts/" xmlns:ec="http://www.w3.org/2001/04/xmlenc#" xmlns:sp="http://schemas.microsoft.com/sharepoint/" xmlns:sps="http://schemas.microsoft.com/sharepoint/soap/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:udcs="http://schemas.microsoft.com/data/udc/soap" xmlns:udcxf="http://schemas.microsoft.com/data/udc/xmlfile" xmlns:udcp2p="http://schemas.microsoft.com/data/udc/parttopart" xmlns:wf="http://schemas.microsoft.com/sharepoint/soap/workflow/" xmlns:dsss="http://schemas.microsoft.com/office/2006/digsig-setup" xmlns:dssi="http://schemas.microsoft.com/office/2006/digsig" xmlns:mdssi="http://schemas.openxmlformats.org/package/2006/digital-signature" xmlns:mver="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns:mrels="http://schemas.openxmlformats.org/package/2006/relationships" xmlns:spwp="http://microsoft.com/sharepoint/webpartpages" xmlns:ex12t="http://schemas.microsoft.com/exchange/services/2006/types" xmlns:ex12m="http://schemas.microsoft.com/exchange/services/2006/messages" xmlns:pptsl="http://schemas.microsoft.com/sharepoint/soap/SlideLibrary/" xmlns:spsl="http://microsoft.com/webservices/SharePointPortalServer/PublishedLinksService" xmlns:Z="urn:schemas-microsoft-com:" xmlns:st="" xmlns="http://www.w3.org/TR/REC-html40">

<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
 /* Font Definitions */
 @font-face
        {font-family:"Cambria Math";
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
        {font-family:Tahoma;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0in;
        margin-bottom:.0001pt;
        font-size:12.0pt;
        font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
p
        {mso-style-priority:99;
        mso-margin-top-alt:auto;
        margin-right:0in;
        mso-margin-bottom-alt:auto;
        margin-left:0in;
        font-size:12.0pt;
        font-family:"Times New Roman","serif";}
span.EmailStyle18
        {mso-style-type:personal-reply;
        font-family:"Calibri","sans-serif";
        color:#1F497D;}
.MsoChpDefault
        {mso-style-type:export-only;
        font-size:10.0pt;}
@page WordSection1
        {size:8.5in 11.0in;
        margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
        {page:WordSection1;}
-->
</style>
<!--[if gte mso 9]><xml>
 <o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
 <o:shapelayout v:ext="edit">
  <o:idmap v:ext="edit" data="1" />
 </o:shapelayout></xml><![endif]-->
</head>

<body lang=EN-US link=blue vlink=purple>

<div class=WordSection1>

<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>I use LdapBrowser to validate my ldap credentials and look
inside of AD when needed.<o:p></o:p></span></p>

<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>

<div>

<div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'>

<p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>
rt-users-bounces@lists.bestpractical.com
[mailto:rt-users-bounces@lists.bestpractical.com] <b>On Behalf Of </b>Eugene M.
Evans<br>
<b>Sent:</b> Tuesday, August 10, 2010 7:33 PM<br>
<b>To:</b> rt-users@lists.bestpractical.com<br>
<b>Subject:</b> Re: [rt-users] RT 3.8 Active Directory integration and
singlesign-on<o:p></o:p></span></p>

</div>

</div>

<p class=MsoNormal><o:p> </o:p></p>

<div>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Kevin,</span><span
lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Thank
you for your suggestions.</span><span lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>>Try
using the ldapsearch command line client, I find it is much closer to the way
the perl ldap library is connecting. Once you make that </span><span lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>>connect,
the same user should be fine. One thing about AD is that sometimes the AD
server responds better to a user of </span><span lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>>sAMAccountName@domain
(email address style login) rather than a full DN, but I've never found an
explanation for why.</span><span lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>yes,
I had been trying to use ldapsearch but was getting bogged down in getting
it configured to work.  First had to install OpenLdap which also depended
on BerkeleyDB, then ran out of HDD space and finally gave up. I was able
to get it to run but never did get it to return anything at the
command line.  Ended up I was able to to get things working without that
and without resorting to the <a href="mailto:sAMAccountName@domain">sAMAccountName@domain</a>
format (see my reply today to Mike Johnson), but may try it as a test anyway
just to have an alternative in case something down the road requires it.</span><span
lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>I
appreciate the help.</span><span lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Sincerely,</span><span
lang=EN><o:p></o:p></span></p>

<p><span lang=EN style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Gene
Evans</span><span lang=EN><o:p></o:p></span></p>

</div>

</div>

CONFIDENTIALITY NOTICE:  The information contained in this email message, including any attachments, may be 
privileged, confidential and otherwise protected from disclosure.  If the reader of this message is not the 
intended recipient, you are hereby notified that any use, dissemination, distribution or copying of this 
message, including any attachments, is strictly prohibited.  If you have received this email message in 
error, please notify the sender by reply email and delete/destroy the email message, including attachments, 
and any copies thereof.  Although we have taken precautions to minimize the risk of transmitting viruses via 
email and attachments thereto, we do not guarantee that either is virus-free, and we accept no liability for 
any damages sustained as a result of any such viruses.
</body>

</html>