Re: SM Active Directory Integration (295 Views)
Reply
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 1 of 5 (442 Views)

SM Active Directory Integration

I have read through most of the posts on this topic already, but I am still unable to get this to work correctly.

 

I am trying to integrate my active directory with my HP SM 9.3 server. I have done the following:

 

edited the sm.ini to add the following:

 

    ldapbinddn:domain\user
    ldapbindpass:password
    ldapsearchscope:0
    ldapstats:1
    ldapnostrictlogin:1
    ldapdisable:0

 

I have made the following chages in the sm service:

 

    Ongoing Maintenance->System->LDAP Mapping

        Ldap server:   IP

        LDAP PORT: 389

        LDAP BASE DIRECTORY: ou=sm_users,ou=my_users,dc=mydomin,dc=com

 

I clicked 'set file/field level mapping' and mapped the following to 'operator':

   

    ldap server: ip

    ldap port: 389

    ldap base dir: ou=sm_users,ou=my_users,dc=mydomin,dc=com

    ldap additional query: objectclass=Person

 

    field Name      LDAP Attribute Name

    name                sAMAccountName

    password        userPassword

 

I mapped the following under 'contacts':

 

    ldap server: ip

    ldap port: 389

    ldap base dir: ou=sm_users,ou=my_users,dc=mydomin,dc=com

    ldap additional query: objectclass=Person

 

    field Name      LDAP Attribute Name

    contact.name    cn

 

I am not able to log in with my ad creds. What am I missing?

 

 

 

 

 

 

 

 

 

Please use plain text.
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 2 of 5 (413 Views)

Re: SM Active Directory Integration

I am able to get some level of users to show up in the windows client, if I remove:
ldapnostrictlogin:1
from sm.ini and if i set AD as the authoritative source. This does seem to remove falcon though.
Please use plain text.
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 3 of 5 (408 Views)

Re: SM Active Directory Integration

This is just causing the error LDAP server protocol error received.
Please use plain text.
Honored Contributor
John Stagaman
Posts: 3,363
Registered: ‎07-13-2007
Message 4 of 5 (344 Views)

Re: SM Active Directory Integration

Do you have the attached guide to configuring LDAP with SM?

----------------------------------------------------
Kudos - what, where, how, and why
Want Good Answers? Ask Good Questions...
Please use plain text.
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 5 of 5 (295 Views)

Re: SM Active Directory Integration

I do have that guide. 

 

I was able to get it 1/2 way working by adding the template in. 

 

I cannot log in with the webtier using an AD account, error:

 

Attempting to bind to LDAP without a password is not allowed!

 

 

It finds the ad account just fine though...

Please use plain text.
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation