Hi! What are you using for LDAP? Is it Active Directory (AD)? If so, I have been testing with AD today and may be able to help. It might be worthwhile to test and make sure the userdn and binddn are getting the hits you want. For the binddn, you’re expecting it to only have one hit. For the userdn, many including the user named “madhu”. You can check if that’s happening by doing ldap searches like this:
ldapsearch -H ldap://192.168.168.68:10389 -x -W -D "someone@example.com" -b "ou=users,ou=system,dc=myorg,dc=com"
ldapsearch -H ldap://192.168.168.68:10389 -x -W -D "someone@example.com" -b "uid=admin,ou=system,dc=myorg,dc=com"
You’d replace someone@example.com
with the service account you’re trying to target with your binddn
. I’m particularly suspicious of the binddn
because I’m unsure of whether it targets only one user, and I believe it needs to be one.