Astaro User Bulletin Board
Go Back   Astaro User Bulletin Board > Astaro Gateway Products > Web Security: HTTP/HTTPS/FTP, IM/P2P, Web Filtering and Antivirus
Reload this Page A possible solution to Astaro's SSO AD shortcomings
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Welcome to the Astaro User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Page 2 of 2 1 2
Reply
 
LinkBack Thread Tools Display Modes
  #11 (permalink)  
Old 10-30-2008, 04:36 AM
BAlfson's Avatar
Moderator
  
Join Date: Mar 2007
Location: Oklahoma City
Posts: 5,395
Default
Send me an email, BAlfson at MediaSoftUSA dot com, and I'll send you the document I recently wrote to help clients set up the User Portal with AD. It describes what you need. I'm just asking that you critique the document to help me improve it.

Thanks - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
Addicted to my iPhone!
Reply With Quote
  #12 (permalink)  
Old 10-30-2008, 09:26 PM
Wizard
  
Join Date: May 2003
Location: Brunswick, Maryland, USA
Posts: 2,671
Default
Bind User DN:

Bind User Password:

Repeat:


Test Server

Base DN:


This form configures Active Directory authentication. You need to specify at least Server and Port.


so what goes in the base dn section? I'm pretty sure i ahve the user dn setup right..
Reply With Quote
  #13 (permalink)  
Old 10-30-2008, 10:04 PM
BAlfson's Avatar
Moderator
  
Join Date: Mar 2007
Location: Oklahoma City
Posts: 5,395
Default
I didn't receive an email. Here's an extract from my document:
Quote:
I. Determine from Windows Server the DN for the binding user and for the Base DN

If you pick a user with administrative rights, you will be able to configure either or both LDAP and AD. You will need the full, exact Distinguished Name (DN) for the Astaro to be able to work with AD or LDAP services.

Open a Command Prompt on the server running the AD services. In my case, I have a separate login for me when I want to be an administrator, bob2, so I ran the following command:

dsquery user –name b*

Among the responses was the one I was looking for:

“CN=bob2,OU=SBSUsers,OU=Users,OU=MyBusiness,DC=Our domain,DC=local”

Because I want to be able to use pre-existing AD groups to fine-tune the HTTP Proxy and to limit use of the Portal to select users, I’ll set the Base DN for my AD as:

“OU=MyBusiness,DC=Ourdomain,DC=local”
Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
Addicted to my iPhone!
Reply With Quote
  #14 (permalink)  
Old 06-25-2009, 09:11 PM
Junior Member
  
Join Date: Jun 2009
Posts: 1
Default
I'm having the same issue. My user is in the Default Users Group but when I click "Test Sever" I get the error message.

Server exists and accepts connections, but bin to ldaps://[serverip] failed with Bind DN and password.

I know the password is correct.

Bind User DN: CN=A****,OU=Users,DC=[domain],DC=local

Base DN: DC=[domain],DC=local
Reply With Quote
  #15 (permalink)  
Old 06-26-2009, 02:52 AM
BAlfson's Avatar
Moderator
  
Join Date: Mar 2007
Location: Oklahoma City
Posts: 5,395
Default
Before you hit [Test Server], you must press [Apply].

I made that mistake several times before I figured out they thought nobody could be so foolish...

Cheers - Bob
__________________
ACE V7 - Astaro Preferred Partner since V3
Addicted to my iPhone!
Reply With Quote
  #16 (permalink)  
Old 11-28-2009, 10:58 AM
Junior Member
  
Join Date: Nov 2009
Location: Canberra Australia
Posts: 2
Default
BAlfson,
I used your method as outlined in #13 and it worked a real treat for me. It was almost identical as your example was for a SBS AD which is what I run.
Thanks, that took the headache out of configuring AD for Astaro.
Reply With Quote
Reply
Page 2 of 2 1 2

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 11:08 PM.

 
Contact Us - Astaro User Bulletin Board - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.


These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases. issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.