I'm trying to bind to Azure LDAPS with correct user creds.
I've generated a certificate on CertificateTools because Azure LDAP didn't want to accept a certificate that I tried to generate following by this article: https://docs.microsoft.com/en-in/azure/active-directory-domain-services/tutorial-configure-ldaps.
I configured my DNS's TXT and created an Azure domain. After that, my cert was accepted successfully. I have one windows server 2016 and imported this certificate to it.
I can connect to Azure LDAPS via ldp.exe from WS2016, but can't make BIND working. I've created the user in Azure AD, give membership in administrative groups, and applied for all roles in the domain.
When I trying to bind I get this:
0 = ldap_set_option(ld, LDAP_OPT_ENCRYPT, 0)
res = ldap_bind_s(ld, NULL, &NtAuthIdentity, NEGOTIATE (1158)); // v.3
{NtAuthIdentity: User='azure'; Pwd=<unavailable>; domain = 'example.link'}
Error <49>: ldap_bind_s() failed: Invalid Credentials.
Server error: 8009030C: LdapErr: DSID-0C090588, comment: AcceptSecurityContext error, data 52e, v2580
Error 0x8009030C The logon attempt failed
I've tried everything:
1) to bind with credentials, typing domain example.link and user azure@example.link
2) to bind with credentials, typing domain example.link and user azure
3) to bind with credentials, typing domain empty and user azure@example.link
4) to simple bind, typing user azure@example.link
5) to simple bind, typing user azure
When I trying to bind with simple bind method I receive this error:
res = ldap_simple_bind_s(ld, 'azure@example.link', <unavailable>); // v.3
Error <52>: ldap_simple_bind_s() failed: Unavailable
Server error: 8009030C: LdapErr: DSID-0C090588, comment: AcceptSecurityContext error, data 52e, v2580
Error 0x8009030C The logon attempt failed
And I'm sure that's credentials are right. Also, I'm using a free trial subscription.
User contributions licensed under CC BY-SA 3.0