Copy link to clipboard
Copied
We're trying to connect to LDAP for authentication, and although it works for some users, it's giving this error for some. all users are in the same OU and are created the same way. how can I get more information in order to fix the issue (assuming it has to do with the users accounts):
Detail | One or more of the required attributes may be missing or incorrect or you do not have permissions to execute this operation on the server. |
Message | An error has occurred while trying to execute query :[LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1 ]. |
Operation | query :[LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1] |
Copy link to clipboard
Copied
Please post an example of the cf tag and parameters that is failing.
Cheers
Eddie
Copy link to clipboard
Copied
I did a quick Google search and found the following:
Indicates an Active Directory (AD) AcceptSecurityContext error, which is returned when the username is valid but the combination of password and user credential is invalid. This is the AD equivalent of LDAP error code 49.
Is it consistently the same users who are experiencing this issue?
V/r,
^ _ ^
UPDATE: I also found the following, which might be useful.
LDAP is trying to authenticate with AD when sending a transaction to another server DB. This authentication fails because the user has recently changed her password, although this transaction was generated using the previous credentials. This authentication will keep failing until ... unless you change the transaction status to Complete or Cancel in which case LDAP will stop sending these transactions.