[RESOLVED] Authentication from ldapsearch on Samba AD

Come here to share your tips and tricks for using Samba4
Locked
flipflip
Messages: 56
Registration: May 31, 2022 - 09:05

January 10, 2023 - 4:54 PM

Hello everyone and Happy New Year!

I'm resuming the Samba 35 to Samba AD migration project. I need to be able to query the internal Samba directory using LDAP tools. To test, I'm using ldapsearch from another server with this command:

Code: Select all

ldapsearch -LLL -h IP.DE.MON.SERVEURAD cn=administrator -D cn=administrator,dc=mon,dc=domaine -W
After entering the administrator password, I get this message:

Code: Select all

ldap_bind: Strong(er) authentification required (8)
                 additional info: BindSimple: Transport encryption required.
I often find the solution to pass a parameter to no:

Code: Select all

ldap server require strong auth = no
But from what I understand, this lowers the security level, whereas this concept was introduced in version 4.4 (https://wiki.samba.org/index.php/Updati ... entication) from Samba. Unfortunately, I haven't found any other suggestions on the subject :(

Is there another solution?

Thanks in advance.
High
flipflip
Messages: 56
Registration: May 31, 2022 - 09:05

January 10, 2023 - 5:04 PM

Well, by the time I'd finished writing the message and started another search... I found the solution.

The command to be executed is

Code: Select all

ldapsearch -ZZ -b "cn=Monuser,cn=Users,dc=Mon,dc=Domain" -s sub -D "cn=administrator,cn=Users,dc=Mon,dc=Domain" -h IP.DE.MON.SERVERAD -W
High
Locked

Return to "Tips and Tricks"


  • To go further with WAPT