This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal


~Howard Kiagenjip
Jun 18, 2014, 9:59 AM
10 Posts

Active Directory Authentication and IMAP

  • Category: Administration
  • Platform: Windows
  • Release: 9.0.1
  • Role: Administrator
  • Tags: IMAP,AD
  • Replies: 5
I've changed the 'Domino Internet Password' from the person document to AD Authentication (clearing Internet_password, adding Directory Assistance-LDAP)

+ It works from a browser, even my Android can connect through the Exchange-Protocoll to Traveler

- IMAP is unable to connect (SMTP works) neighter from a PC-programm nor from various android phones (works with the Domino Internet Password)

Anyone else experienced this problem???
~Ned Umlutherettu
Jun 18, 2014, 2:18 PM
113 Posts
need mail attributes accessible over ldap
either need to be able to query the domino mail information from the AD ldap server, or name map the AD user to a domino person so that the mail internet protocols can perform the necessary lookups to determine a user's
MailFile, MailServer and MailDomain,

heres a technote describing issue further:

Title:        Authenticate POP3 or IMAP clients when Domino server is configured to authenticate users against an LDAP
Doc #:        1668377
URL:        http://www.ibm.com/support/docview.wss?uid=swg21668377
~Howard Kiagenjip
Jun 19, 2014, 7:58 AM
10 Posts
did not work
I've added the attirbutes to ldap & entered them as in the person document

But they are still not found and I'm constantly asked for the password. Is it possbile that the lookup is case sensitive and "mailserver" and "MailServer" are not the same (I persumed because mail is small maildomain and mailserver should be too)???
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local

Anybody knows how to change those attributes? Or does anybody know how to 'remap' the fields?


Log:
[17B8:000A-1114] 19.06.2014 14:30:16.77 WebAuth> GroupCache: Cached for User DN='first.name@domain.com'
[09C4:0069-02D8] 19.06.2014 14:30:18.10 <LDAP GW> LDAPChange(WindowsServer.DOMAIN.LOCAL:389): detection type=Active Directory
[09C4:0069-02D8] 19.06.2014 14:30:18.10 <LDAP GW> LDAPChange(WindowsServer.DOMAIN.LOCAL:389): new change time is 19.06.2014 14:30:18.
[09C4:0069-02D8] 19.06.2014 14:30:18.10 <LDAP GW> LDAPChange(WindowsServer.DOMAIN.LOCAL:389): highestCommittedUSN=->335911; Changed=TRUE
[17B8:0008-0B94] 19.06.2014 14:30:22.93 WebAuth> LOOKUP in view $Users (user='first.name@domain.com' org='')
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW> Searching for name='first.name@domain.com' in LDAP server='WindowsServer.DOMAIN.LOCAL'
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW>   Attr: mail (mapped from Item=$$NotesDN)
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW>   Attr: objectClass
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW>   Attr: member (mapped from Item=Members)
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW>   Attr: uniqueMember (mapped from Item=Members)
[17B8:000A-0B94] 19.06.2014 14:30:22.93 <LDAP GW>   Attr: MailDomain (mapped from Item=MailAddress)
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Attr: modifyTimestamp (mapped from Item=$$ModifiedTime)
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Attr: MailAddress
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Attr: CN
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Base: DC=DOMAIN,DC=local
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Scope: 2
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Filter: (|(cn=first.name@domain.com)(sAMAccountName=first.name@domain.com)(uid=first.name@domain.com)(mail=first.name@domain.com))
[17B8:000A-0B94] 19.06.2014 14:30:22.94 <LDAP GW>   Timeout: 60 secs
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> SEARCH returned '1' match(es).
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> ldap_search returned matched DN='CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local'
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute AltFullName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute AltFullNameLanguage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute $AdminpOldWebName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MessageStorage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute ListName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attributes member and uniqueMember not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> mail='first.name@domain.com'
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute uid not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute Location not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute EncryptIncomingMail not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute CalendarDomain not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute NetUserName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute CertificateThumbprint not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute NewMailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute NewMailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute AltFullName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MessageStorage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute ServerName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute AltFullNameLanguage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute $QuickPlace not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute SametimeServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute MailSystem not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute $AdminpOldwebName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute HTTPPasswordChangeDate not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute HTTPPasswordForceChange not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute Policy not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute LTPA-UsrNm not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute DB2UserName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute $$NoteID not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.00 <LDAP GW> Attribute $$IsMatchFromCache not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.02 <LDAP GW> Attribute $$Readers not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.02 <LDAP GW> Attribute $$LDAPAccessGroups not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.02 <LDAP GW> Return buffer was added ok.
[17B8:000A-0B94] 19.06.2014 14:30:23.02 NAMELookup::<NAMEVerifyLDAPPassword>> Informational: verify LDAP msgid ='6'
[17B8:000A-0B94] 19.06.2014 14:30:23.05 NAMELookup::<NAMEVerifyLDAPPassword>> BIND LDAP host='WindowsServer.DOMAIN.LOCAL:389' failed for user 'CN=WINDOWSUSER,CN=Users,DC=DOMAIN,DC=local' error:'Invalid credentials'
[17B8:000A-0B94] 19.06.2014 14:30:23.05 NAMELookup::<NAMEVerifyLDAPPassword>> Informational: Restore LDAP msgid ='7'
[17B8:000A-0B94] 19.06.2014 14:30:23.05 NAMELookup::<NAMEVerifyLDAPPassword>> Restoring LDAP Connection for host='WindowsServer.DOMAIN.LOCAL:389' w/ user='LDAP-AD-USER@DOMAIN.local'
[17B8:000A-0B94] 19.06.2014 14:30:23.05 NAMELookup::<NAMEVerifyLDAPPassword>> Received error 'Error looking up name on LDAP Server; See server log for further details.' trying to verify LDAP credentials!
[17B8:0008-0B94] 19.06.2014 14:30:23.05 WebAuth> Unsuccessful LDAP BIND for user='first.name@domain.com'
[17B8:0008-0B94] 19.06.2014 14:30:23.05 WebAuth> No unambiguous match for user='first.name@domain.com' org=''
[17B8:0008-0B94] 19.06.2014 14:30:23.05 WebAuth> LOOKUP in view ($HIGH_SECURITY_AUTH) (user='first.name@domain.com' org='')
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW> Searching for name='first.name@domain.com' in LDAP server='WindowsServer.DOMAIN.LOCAL'
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: mail (mapped from Item=$$NotesDN)
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: objectClass
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: member (mapped from Item=Members)
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: uniqueMember (mapped from Item=Members)
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: MailDomain (mapped from Item=MailAddress)
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: modifyTimestamp (mapped from Item=$$ModifiedTime)
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: MailAddress
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Attr: CN
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Base: DC=DOMAIN,DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Scope: 2
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Filter: (|(cn=first.name@domain.com)(sAMAccountName=first.name@domain.com)(uid=first.name@domain.com)(mail=first.name@domain.com))
[17B8:000A-0B94] 19.06.2014 14:30:23.07 <LDAP GW>   Timeout: 60 secs
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> SEARCH returned '1' match(es).
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> ldap_search returned matched DN='CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local'
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute AltFullName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute AltFullNameLanguage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute $AdminpOldWebName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MessageStorage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute ListName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attributes member and uniqueMember not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> mail='first.name@domain.com'
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute uid not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute Location not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute EncryptIncomingMail not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute CalendarDomain not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute NetUserName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute CertificateThumbprint not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute NewMailServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute NewMailFile not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute AltFullName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MessageStorage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute ServerName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute AltFullNameLanguage not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute $QuickPlace not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute SametimeServer not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute MailSystem not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute $AdminpOldwebName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute HTTPPasswordChangeDate not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute HTTPPasswordForceChange not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute Policy not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute LTPA-UsrNm not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute DB2UserName not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute $$NoteID not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.21 <LDAP GW> Attribute $$IsMatchFromCache not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.22 <LDAP GW> Attribute $$Readers not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.22 <LDAP GW> Attribute $$LDAPAccessGroups not found for entry CN=WINDOWSUSER/CN=Users/DC=DOMAIN/DC=local
[17B8:000A-0B94] 19.06.2014 14:30:23.22 <LDAP GW> Return buffer was added ok.
[17B8:000A-0B94] 19.06.2014 14:30:23.22 NAMELookup::<NAMEVerifyLDAPPassword>> Informational: verify LDAP msgid ='9'
[17B8:000A-0B94] 19.06.2014 14:30:23.25 NAMELookup::<NAMEVerifyLDAPPassword>> BIND LDAP host='WindowsServer.DOMAIN.LOCAL:389' failed for user 'CN=WINDOWSUSER,CN=Users,DC=DOMAIN,DC=local' error:'Invalid credentials'
[17B8:000A-0B94] 19.06.2014 14:30:23.25 NAMELookup::<NAMEVerifyLDAPPassword>> Informational: Restore LDAP msgid ='10'
[17B8:000A-0B94] 19.06.2014 14:30:23.25 NAMELookup::<NAMEVerifyLDAPPassword>> Restoring LDAP Connection for host='WindowsServer.DOMAIN.LOCAL:389' w/ user='LDAP-AD-USER@DOMAIN.local'
[17B8:000A-0B94] 19.06.2014 14:30:23.25 NAMELookup::<NAMEVerifyLDAPPassword>> Received error 'Error looking up name on LDAP Server; See server log for further details.' trying to verify LDAP credentials!
[17B8:0008-0B94] 19.06.2014 14:30:23.25 WebAuth> Unsuccessful LDAP BIND for user='first.name@domain.com'
[17B8:0008-0B94] 19.06.2014 14:30:23.25 WebAuth> No unambiguous match for user='first.name@domain.com' org=''
~Lisa Feznilyetsi
Oct 16, 2014, 9:55 PM
1 Posts
Did you find a solution?

Hi,

after upgrading from Domino 8.5.3 to 9.0.1 FP2 IMAP Active Directory Authentication is not working anymore.MailFile attribute exists in AD.
We get similar messages like you. Did you find a solution for this?

 

 

~Umberto Xanweter
Jul 3, 2015, 12:11 PM
2 Posts
Check the "logon workstations" feature

We got the authentication failed issue because the windows profile for users used the " "logon workstations" feature and the AD Domian Controller was not listed.

It seems that the Domain Controller needs to be the "trusted broker". After Domino establishes the users Distinguished Nmae in AD using the account credentials stored in Directory Assistance it then "unbinds" and rebinds using the users name and password to see if the password is correct.

If the user profile prevents them accessing the domain controller then the authentication fails.


This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal