LDAP:无法使用用户名中的句点对用户进行身份验证
[英]LDAP: Cannot authenticate users with period in username
问题描述
Basically, this works: 
基本上,这可行:
ldapsearch -H ldap://test.domain.pri -x -b dc=domain,dc=pri -D test1 -W
This does not: 这不是:
ldapsearch -H ldap://test.domain.pri -x -b dc=domain,dc=pri -D test.2 -W
The existence of a dot in the username seems to be the only determining factor here. 用户名中是否存在点是此处唯一的决定因素。
Any suggestions? 有什么建议么?
3 个解决方案
解决方案1
0 2015-05-15 21:43:27
Try quoting the value for -D: 尝试引用-D的值:
ldapsearch -H ldap://test.domain.pri -x -b dc=domain,dc=pri -D "test.2" -W
My other thought: the -D param is supposed to provide the distinguished name (DN). 我的另一个想法:-D参数应该提供专有名称(DN)。 Is "test.2" really a valid DN in your setup? “ test.2”真的是您设置中的有效DN吗?
解决方案2
0 已采纳 2015-05-17 14:43:54
Thanks for the suggestions! 感谢您的建议! It turns out however that the client has something in place which replaces periods with spaces in the username. 但是事实证明,客户端已经到位,可以用用户名中的空格替换句点。 So the problem was not on my end! 所以问题不止于我!
解决方案3
0 2016-04-19 21:53:32
For those who may still encounter this issue. 对于那些仍然可能会遇到此问题的人。 Try using full UPN after -D. 尝试在-D之后使用完整的UPN。 I found it to work with periods flawlessly: 我发现它可以完美地使用期间:
ldapsearch -H ldap://test.domain.pri -x -b dc=domain,dc=pri -D "test.2@domain.pri" -W
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.