Greeting,

We are currently in the process of configuring Tidal 6.2.

While we tried the out of the box Active Directory configuration, we would like to switch to LDAP, in order to avoid inputing the Domain (DOMAINE\Username) in every login attempt.

However, the documentation on how to configure Ldap in TES is lacking. The only guide I could find was http://www.cisco.com/c/en/us/td/docs/net_mgmt/datacenter_mgmt/Tidal_Enterprise_Scheduler/6-2/user/guide/Cisco_TES_6-2_User_Guide/Parameters.html#pgfId-1175282

However, most of the keywords used aren't described at all and what to input in them is trial and errors, which lead us nowhere.

Has anyone been able to configure TES to connect to the AD through Ldap?

Our current configuration goes as follow:

LDAP.HostName=our.ldap.hostname.com
LDAP.Port=3268
LDAP.ContextFactory=com.sun.jndi.ldap.LdapCtxFactory
LDAP.BindDN=DC=Company,DC=local
LDAP.UserBindDN=DC=Users,DC=Company,DC=local
LDAP.GroupBindDN=DC=Groups,DC=Company,DC=local
LDAP.ForceBindingLogin=ldaptidal,DC=Users,DC=Company,DC=local
LDAP.BindPassword=**passsword**
LDAP.AuthenticationMethod=simple

LDAP.UserObjectClass=user
LDAP.UserRdnAttribute=displayName
LDAP.UserIdAttribute=sAMAccountName
LDAP.RoleObjectClass=group
LDAP.RoleMemberAttribute=memberOf

But we have doubt in what to input in LDAP.BindDN and LDAP.ForceBindingLogin

One other post suggested that the LDAP.ForceBindingLogin was the username used for the initial bind. If so, what is BindDN? The root of the initial bind?

All login attempt give use the following error:

javax.security.auth.login.LoginException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C5, comment: AcceptSecurityContext error, data 52e, v2580?]

With no details to tells us if the failed credential were at the initial binding or the user binding.

Any help would be appreciated.

Thanks

Philippe Busque