validuser: do_ldap_check: ldap_sasl_bind_s(): rc=-1, bind failed for user

0

Hi Team,

I'm trying to set up LDAP authentication on our LoadBalancers, but for some reason I keep getting this error message:

validuser: do_ldap_check: ldap_sasl_bind_s(): rc=-1, bind failed for user


This happen whether the LDAP Protocol is Unencrypted or LDAPS;

the LDAP Endpoint has been given a domain admin account which we know is valid and working. For the sake of testing, we've disabled any firewall that might have been in the way (as I've read that -1 tends to be a failure to communicate with the LDAP server), but still no joy.

The account used to test AAA has been added as a user with global permissions (not that it should matter as we're failing at the stage before that).

Any suggestion?

Many Thanks

1 comment

Avatar
0
alessandro.foti

Figured it out guys, everything was set correctly but for some reason (still to be explained), our main DC1 wasn't willing to authenticate users, whilst DC2 did instantly.

 

we've tested with ldp.exe and DC1 is indeed working and binding users, so it looks like it's something on the KEMP LoadBalancer side, but ehy, at least it's working :)