LDAP authentication with different login as AD username

Ask questions about your setup or get help installing ZCS server (ZD section below).
st3
Posts: 25
Joined: Mon Aug 05, 2019 8:17 am

LDAP authentication with different login as AD username

Postby st3 » Wed Aug 07, 2019 12:08 pm

HI. I enabled External LDAP authentication and I can log in with my AD username/passwd.
The problem is that the AD users are lastname@domain.com but I need the emails to be firstname.lastname@domain.com
Current config:
LDAP filter: (userPrincipalName=%n)
LDAP search base: dc=domain,dc=com
LDAP Bind enabled and passwd configured

I found this post, viewtopic.php?t=37892 but no luck so far.


7224jobe
Advanced member
Advanced member
Posts: 160
Joined: Sat Sep 13, 2014 1:55 am
ZCS/ZD Version: 8.8.15_GA_3869.RHEL7_64 Patch4

Re: LDAP authentication with different login as AD username

Postby 7224jobe » Wed Aug 07, 2019 12:29 pm

st3
Posts: 25
Joined: Mon Aug 05, 2019 8:17 am

Re: LDAP authentication with different login as AD username

Postby st3 » Wed Aug 07, 2019 1:52 pm

Thanks for your reply.
But I get this error in mailbox.log when I try to log in:

Code: Select all

ption: authentication failed for [firstname.lastname@domain.com], external LDAP auth failed, LDAP error:  - unable to ldap authenticate: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece
2019-08-07 16:49:15,167 INFO  [qtp391914049-19433:http://localhost:8080/service/soap/AuthRequest] [name=firstname.lastname@domain.com;oip=10.0.0.63;ua=zclient/8.8.12_GA_3817;soapId=1a7ac0fd;] soap - AuthRequest elapsed=6
2019-08-07 16:49:15,182 INFO  [qtp391914049-19346:https:https://localhost:7071/service/admin/soap/GetDomainInfoRequest] [ua=ZCS/8.8.12_GA_3817;soapId=1a7ac0fe;] soap - GetDomainInfoRequest elapsed=0
7224jobe
Advanced member
Advanced member
Posts: 160
Joined: Sat Sep 13, 2014 1:55 am
ZCS/ZD Version: 8.8.15_GA_3869.RHEL7_64 Patch4

Re: LDAP authentication with different login as AD username

Postby 7224jobe » Wed Aug 07, 2019 2:30 pm

st3
Posts: 25
Joined: Mon Aug 05, 2019 8:17 am

Re: LDAP authentication with different login as AD username

Postby st3 » Wed Aug 07, 2019 6:53 pm

I got this part working. But how do I get to authenticate with AD user if I want the email address to differ from the AD username.
Is there a way to get the «mail» atribute from AD and use it as the email address in Zimbra?
User avatar
ccelis5215
Outstanding Member
Outstanding Member
Posts: 609
Joined: Sat Sep 13, 2014 2:04 am
Location: Caracas - Venezuela
ZCS/ZD Version: 8.0.9.GA.6191.UBUNTU12.64 FOSS

Re: LDAP authentication with different login as AD username

Postby ccelis5215 » Wed Aug 07, 2019 10:22 pm

st3
Posts: 25
Joined: Mon Aug 05, 2019 8:17 am

Re: LDAP authentication with different login as AD username

Postby st3 » Thu Aug 08, 2019 5:47 am

I figured it out.
Looks like I got the External LDAP account for Authentication: portion wrong, stupid mistake from my side.
Taking a closer look at the ADSI Editor fixed it.
Thanks for your help guys! :!: :!: :!:

Return to “Installation and Upgrade”

Who is online

Users browsing this forum: No registered users and 6 guests