ssh-bastion icon indicating copy to clipboard operation
ssh-bastion copied to clipboard

Published 20 hours ago verified publisher icon iamacarpet

LDAP auth not work

Open majestic1488 opened this issue 6 years ago • 2 comments

Hi. example my config: ... auth_type: "ad" ldap_server: my.domain:389 ldap_domain: my.domain pass_password: true ...

But, in auth.log I see the following: ssh-bastion[20011]: Failed password for user [email protected] from ip:port ssh2

what am I doing wrong?

majestic1488 avatar Aug 07 '19 06:08 majestic1488

@majestic1488 do you think it could be that your AD doesn't support non-SSL binds?

389 is the non-SSL port AFAIK and the default settings don't allow binds via it.

iamacarpet avatar Aug 07 '19 09:08 iamacarpet

@iamacarpet AD supports non-SSL binds. And more information, I ran tcpdump on port 389 and there is silence, no requests There are no outgoing packets from server to port 389 What should we do?

majestic1488 avatar Aug 07 '19 10:08 majestic1488