PDA

View Full Version : SLES10 Windows 2008 Server R2 Authentication



xebax24
13-Dec-2011, 02:26
Hi,

Im trying to authenticate a SLES10 with a Windows 2008 R2 Active
Directory to can use the mail server from the SUSE with the Windows
authentication

Whit the yast mail-server command i have an error

https://lh6.googleusercontent.com/-4tm54S8KTfg/TualBT_6q8I/AAAAAAAAAXg/qcGbT8eU5vo/s318/4.png


When i try to connect the ldap client to the AD server with the Yast
ldap with the option "Create Default Configuration Objects"

https://lh6.googleusercontent.com/-uTOCCdy91Y8/TualBByj_LI/AAAAAAAAAXQ/xBaYM-RwZ5M/s316/1.png

With the ldap browser tool and the same credentials of the ldap client
i can see all the DN and objects of the ldap tree

https://lh5.googleusercontent.com/-9mg03bKgimM/TualBBvin5I/AAAAAAAAAXk/GRsFQPKsStE/s640/3.png

https://lh4.googleusercontent.com/-s8dB6xZ0_VQ/TualBKYhZMI/AAAAAAAAAXU/8NxQFzDLF70/s640/2.png

I search and no found info about the error

Thanks for the help


--
xebax24
------------------------------------------------------------------------
xebax24's Profile: http://forums.novell.com/member.php?userid=121132
View this thread: http://forums.novell.com/showthread.php?t=449495

magic31
14-Dec-2011, 12:06
xebax24;2160528 Wrote:
> Hi,
>
> Im trying to authenticate a SLES10 with a Windows 2008 R2 Active
> Directory to can use the mail server from the SUSE with the Windows
> authentication
>
> Whit the yast mail-server command i have an error .....

Not sure as I haven't done this before.

One thing I do note is that your AD domain ends on .local, which is
defined/known as a DNS multicast domain ('Multicast DNS'
(http://www.multicastdns.org/)) and means hosts in a .local domain
won't resolve normally on SLES 10 unless one turns off the mDNS option.

As a quick test, can you ping and/or resolve the domain controller by
name from the SLES server?

In any case, add the 'mdns off' option to the /etc/host.conf


Code:
--------------------

mdns off

--------------------


, and make sure the /etc/nsswitch.conf hosts and network parameters are
only is set to look at files and dns, like;


Code:
--------------------

hosts: files dns
networks: files dns

--------------------


...then reboot the SLES server. Then retry the LDAP (re)configuration
and see if the error presists.


-Willem


--
Novell Knowledge Partner (voluntary sysop)

It ain't anything like Harry Potter.. but you gotta love the magic IT
can bring to this world
------------------------------------------------------------------------
magic31's Profile: http://forums.novell.com/member.php?userid=2303
View this thread: http://forums.novell.com/showthread.php?t=449495

xebax24
14-Dec-2011, 15:16
Hi

I check the nsswitch.conf and its like you say

hosts: files dns
networks: files dns

I have as dns server the AD server, so i can ping and resolve correctly
mydomain.local

And the other thing is if i make a ldapsearch command i can sucessfully
access to the ldap database same thing with the yast ldap browser

The problem is just when i use the option "Create Default Configuration
Objects" in the yast2 ldap

Regards,


--
xebax24
------------------------------------------------------------------------
xebax24's Profile: http://forums.novell.com/member.php?userid=121132
View this thread: http://forums.novell.com/showthread.php?t=449495