Re: SM Active Directory Integration (457 Views)
Reply
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 1 of 5 (604 Views)

SM Active Directory Integration

I have read through most of the posts on this topic already, but I am still unable to get this to work correctly.

 

I am trying to integrate my active directory with my HP SM 9.3 server. I have done the following:

 

edited the sm.ini to add the following:

 

    ldapbinddn:domain\user
    ldapbindpass:password
    ldapsearchscope:0
    ldapstats:1
    ldapnostrictlogin:1
    ldapdisable:0

 

I have made the following chages in the sm service:

 

    Ongoing Maintenance->System->LDAP Mapping

        Ldap server:   IP

        LDAP PORT: 389

        LDAP BASE DIRECTORY: ou=sm_users,ou=my_users,dc=mydomin,dc=com

 

I clicked 'set file/field level mapping' and mapped the following to 'operator':

   

    ldap server: ip

    ldap port: 389

    ldap base dir: ou=sm_users,ou=my_users,dc=mydomin,dc=com

    ldap additional query: objectclass=Person

 

    field Name      LDAP Attribute Name

    name                sAMAccountName

    password        userPassword

 

I mapped the following under 'contacts':

 

    ldap server: ip

    ldap port: 389

    ldap base dir: ou=sm_users,ou=my_users,dc=mydomin,dc=com

    ldap additional query: objectclass=Person

 

    field Name      LDAP Attribute Name

    contact.name    cn

 

I am not able to log in with my ad creds. What am I missing?

 

 

 

 

 

 

 

 

 

Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 2 of 5 (575 Views)

Re: SM Active Directory Integration

I am able to get some level of users to show up in the windows client, if I remove:
ldapnostrictlogin:1
from sm.ini and if i set AD as the authoritative source. This does seem to remove falcon though.
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 3 of 5 (570 Views)

Re: SM Active Directory Integration

This is just causing the error LDAP server protocol error received.
Honored Contributor
John Stagaman
Posts: 3,478
Registered: ‎07-13-2007
Message 4 of 5 (506 Views)

Re: SM Active Directory Integration

Do you have the attached guide to configuring LDAP with SM?

----------------------------------------------------
Kudos - what, where, how, and why
Want Good Answers? Ask Good Questions...
Occasional Collector
jdell64
Posts: 4
Registered: ‎06-20-2014
Message 5 of 5 (457 Views)

Re: SM Active Directory Integration

I do have that guide. 

 

I was able to get it 1/2 way working by adding the template in. 

 

I cannot log in with the webtier using an AD account, error:

 

Attempting to bind to LDAP without a password is not allowed!

 

 

It finds the ad account just fine though...

The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.