Hello
I have FreeNAS-11.1-U5 and try to join it to the Windows Server Essentials 2012 AD.
I follow User Manual section "9.1. Active Directory". The NTP and DNS services are configured and working. I can resolve names from AD domain and DNS records for AD services.
When I enter domain name, user name and password to Active Directory UI and try to enable it I receive this error in UI:
I try to execute commands from section 9.1.2 from User Guide:
As I understand from Internet search about this error, there is a missing user authentication before connecting to AD.
I check
When I try with wrong username or password I receive the same error - LdapErr: DSID-0C09079A.
Is it possible to remove all AD related settings and try again, or to enable some debug functions to check what is read from database? I try to set verbose flag in AD configuration but noting happen, there is no additional messages in
I create a bug for this issue 36488
Best Regards
Nikolay Kanchev
I have FreeNAS-11.1-U5 and try to join it to the Windows Server Essentials 2012 AD.
I follow User Manual section "9.1. Active Directory". The NTP and DNS services are configured and working. I can resolve names from AD domain and DNS records for AD services.
When I enter domain name, user name and password to Active Directory UI and try to enable it I receive this error in UI:
{'desc': 'Operations error', 'info': '000004DC: LdapErr: DSID-0C09079A, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v23f0'}
I try to execute commands from section 9.1.2 from User Guide:
sqlite3 /data/freenas-v1.db "update directoryservice_activedirectory set ad_enable=1;"
return 0
service ix-kerberos start
return:
ERROR: {'desc': 'Operations error', 'info': '000004DC: LdapErr: DSID-0C09079A, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v23f0'}
Traceback (most recent call last):
File "/usr/local/libexec/nas/generate_krb5_conf.py", line 549, in <module>
main()
File "/usr/local/libexec/nas/generate_krb5_conf.py", line 480, in main
timeout=fs().directoryservice.kerberos.timeout.start))
File "/usr/local/lib/python3.6/site-packages/middlewared/client/client.py", line 434, in call
raise ClientException(c.error, c.errno, c.trace, c.extra)
middlewared.client.client.ClientException: {'desc': 'Operations error', 'info': '000004DC: LdapErr: DSID-0C09079A, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v23f0'}
As I understand from Internet search about this error, there is a missing user authentication before connecting to AD.
I check
/data/freenas-v1.db
and the user name and password is present in directoryservice_activedirectory
table.When I try with wrong username or password I receive the same error - LdapErr: DSID-0C09079A.
Is it possible to remove all AD related settings and try again, or to enable some debug functions to check what is read from database? I try to set verbose flag in AD configuration but noting happen, there is no additional messages in
/var/log/messages
.I create a bug for this issue 36488
Best Regards
Nikolay Kanchev