Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi, we have an existing ldap server in America. And here in our office in Canada, we would like to authenticate clients in our local PC's. How can I connect the ldap server here in our office? We want to authenticate clients on the server. How to configure our ubuntu OS as an ldap client? Kindly help. Thanks.
Hi, we have an existing ldap server in America. And here in our office in Canada, we would like to authenticate clients in our local PC's. How can I connect the ldap server here in our office? We want to authenticate clients on the server. How to configure our ubuntu OS as an ldap client? Kindly help. Thanks.
Opening new threads with the same question (and under a different user ID), doesn't get you different results. AGAIN...it doesn't matter where the server is, as long as it's reachable over the network.
looks like you don't read the answers. Can you tell us what kind of response will be accepted?
For me it works - is this a good answer?
Follow the guideline: https://help.ubuntu.com/community/LD...Authentication was posted several times. What is the problem with it?
How can we help you?
The LDAP Server is on another network, or subnet from my local PC. How can I make my local PC and the LDAP Server meet? Or in the same network?
AGAIN, as you've been told in your OTHER threads, and under your other user ID, IT DOES NOT MATTER WHERE THE LDAP SERVER IS. As long as you can query it over the network, then set up your LDAP client as you would for any OTHER PC. You've been handed the documentation several times now, but it appears you're just not reading/understanding the answers.
I already succeeded at authenticating my local PC with a local LDAP server. Now, i am trying to authenticate my local PC in our existing LDAP server which is not in the local/ same network. How can i do that? Our LDAP server is not accessed locally. It's in america.
Last edited by coolkid123; 07-13-2016 at 08:07 AM.
I already succeeded at authenticating my local PC with a local LDAP server. Now, i am trying to authenticate my local PC in our existing LDAP server which is not in the local/ same network. How can i do that? Our LDAP server is not accessed locally. It's in america.
AGAIN.....IT DOES NOT MATTER WHERE IT IS LOCATED!!!!!!!
What part of that is not clear? AGAIN, as you've been asked several times now, in this and your OTHER threads for the exact same question...are you able to query the remote LDAP server from your location? If so...then set it up to use that server, the EXACT SAME WAY you set it up to use the LOCAL server, except change the name/address/port as needed. If you are NOT able to run an LDAP query against the remote server, then (as said before), talk with your network admins and GET ACCESS to it.
EDIT: Then talk to your network admins. You're asking us to provide you with details about your internal network.
just googling this is the first hit: http://inside.mines.edu/fs_home/gmur.../sshNotes.html
Read that page carefully and try to follow the process (also you can try another page). Post if you stuck somewhere, but please post what have you tried too!
Quote:
I cannot authenticate it
and similar answers will not help YOU to go further.
How can i set up a tunnel correctly?? Please help.. The netadmins here said that i should use port forwarding, ldap server uses port 389.
So why AREN'T YOU DOING IT??? 389 is the unsecured port, and 636 is the secure port. Since you STILL (after two threads as this user, and one as your OTHER user), don't tell us version/distro of Linux you're using, or what kind of firewall/router/switch/whatever is between you and the other server, what do you think we'll be able to tell you? The VERY FIRST HIT in Google for "port forwarding iptables" is: https://www.digitalocean.com/communi...-with-iptables
...complete with examples. If you're the administrator at your site, this should be something easy for you to do. If you're NOT, then ask your network admins to help you.
Quote:
Originally Posted by coolkid123
My main problem is i cannot connect my local machine to our ldap server. I cannot authenticate it.
Right...which is the same thing you've posted in three threads now. Re-stating it doesn't tell us anything new.
Gentlebeings, for all we know, this exceptionally-unmotivated person could be a bot. Shouting at him won't turn his head(-lights) on.
There are basically only three possibilities to consider here:
The IP-address of the LDAP server might, in fact, be incorrect.
A firewall anywhere along the route could be blocking LDAP traffic, or refusing to accept such traffic from this "unexpected by it" IP address. (This is a wise precaution to take ...)
If a VPN is being used, then it, too, has traffic-filtering capability.
If the firewall rule is to DROP the packet rather than to REJECT it, "the packet simply disappears."
If the server is also programmed not to respond to "pings," its very presence on the network is difficult to detect.
The server is, in fact, being contacted, but it is not responding as the OP expects, and the OP either does not know how to diagnose the problem or has not yet bothered to do so.
Network services find no reason to "be helpful" to someone or something that they consider might be an intruder or an attacker. If the managers of the LDAP configuration in America have done their homework, it certainly won't be.
Of course, what the OP should do is to contact his colleagues in America for assistance, not to keep asking questions here.
Last edited by sundialsvcs; 07-15-2016 at 07:49 AM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.