cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
688
Views
0
Helpful
0
Replies

Cisco SPA 5xx: Active Directory LDAP - LDIR:Failed;error=-1

andreagallazzi
Level 1
Level 1

Hi,

I need to setup my internal corporate Active Directory LDAP with my Phone SPA 502.

The Phone return this error: LDIR:Failed;error=-1  (syslog)   with Simple auth or MD5

Wireshark capture:


No.     Time           Source                Destination           Protocol Length Info

      6 6.246460000    10.0.0.48             10.0.0.100            TCP      74     netarx > ldap [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=1 TSval=9732 TSecr=0

Frame 6: 74 bytes on wire (592 bits), 74 bytes captured (592 bits) on interface 0

Ethernet II, Src: Cisco_6d:89:11 (c8:9c:1d:6d:89:11), Dst: Microsof_00:2a:02 (00:15:5d:00:2a:02)

    Destination: Microsof_00:2a:02 (00:15:5d:00:2a:02)

        Address: Microsof_00:2a:02 (00:15:5d:00:2a:02)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Source: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        Address: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Type: IP (0x0800)

Internet Protocol Version 4, Src: 10.0.0.48 (10.0.0.48), Dst: 10.0.0.100 (10.0.0.100)

    Version: 4

    Header length: 20 bytes

    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))

    Total Length: 60

    Identification: 0x1630 (5680)

    Flags: 0x02 (Don't Fragment)

    Fragment offset: 0

    Time to live: 64

    Protocol: TCP (6)

    Header checksum: 0x0ff9 [correct]

    Source: 10.0.0.48 (10.0.0.48)

    Destination: 10.0.0.100 (10.0.0.100)

    [Source GeoIP: Unknown]

    [Destination GeoIP: Unknown]

Transmission Control Protocol, Src Port: netarx (1040), Dst Port: ldap (389), Seq: 0, Len: 0

    Source port: netarx (1040)

    Destination port: ldap (389)

    [Stream index: 0]

    Sequence number: 0    (relative sequence number)

    Header length: 40 bytes

    Flags: 0x002 (SYN)

        000. .... .... = Reserved: Not set

        ...0 .... .... = Nonce: Not set

        .... 0... .... = Congestion Window Reduced (CWR): Not set

        .... .0.. .... = ECN-Echo: Not set

        .... ..0. .... = Urgent: Not set

        .... ...0 .... = Acknowledgment: Not set

        .... .... 0... = Push: Not set

        .... .... .0.. = Reset: Not set

        .... .... ..1. = Syn: Set

        .... .... ...0 = Fin: Not set

    Window size value: 8192

    [Calculated window size: 8192]

    Checksum: 0xfd6c [validation disabled]

        [Good Checksum: False]

        [Bad Checksum: False]

    Options: (20 bytes), Maximum segment size, No-Operation (NOP), Window scale, No-Operation (NOP), No-Operation (NOP), Timestamps

        Maximum segment size: 1460 bytes

        No-Operation (NOP)

        Window scale: 0 (multiply by 1)

        No-Operation (NOP)

        No-Operation (NOP)

        Timestamps: TSval 9732, TSecr 0

            Kind: Timestamp (8)

            Length: 10

            Timestamp value: 9732

            Timestamp echo reply: 0

No.     Time           Source                Destination           Protocol Length Info

      9 6.453842000    10.0.0.48             10.0.0.90             Syslog   68     LOCAL0.INFO: LDIR:Failed;error=-1\n

Frame 9: 68 bytes on wire (544 bits), 68 bytes captured (544 bits) on interface 0

Ethernet II, Src: Cisco_6d:89:11 (c8:9c:1d:6d:89:11), Dst: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

    Destination: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

        Address: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Source: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        Address: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Type: IP (0x0800)

Internet Protocol Version 4, Src: 10.0.0.48 (10.0.0.48), Dst: 10.0.0.90 (10.0.0.90)

    Version: 4

    Header length: 20 bytes

    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))

    Total Length: 54

    Identification: 0x1633 (5683)

    Flags: 0x00

    Fragment offset: 0

    Time to live: 64

    Protocol: UDP (17)

    Header checksum: 0x4ffb [correct]

    Source: 10.0.0.48 (10.0.0.48)

    Destination: 10.0.0.90 (10.0.0.90)

    [Source GeoIP: Unknown]

    [Destination GeoIP: Unknown]

User Datagram Protocol, Src Port: 1024 (1024), Dst Port: syslog (514)

Syslog message: LOCAL0.INFO: LDIR:Failed;error=-1\n

No.     Time           Source                Destination           Protocol Length Info

     16 12.128535000   10.0.0.48             10.0.0.100            TCP      66     [TCP Previous segment not captured] netarx > ldap [FIN, ACK] Seq=39 Ack=1 Win=8192 Len=0 TSval=9744 TSecr=63231644

Frame 16: 66 bytes on wire (528 bits), 66 bytes captured (528 bits) on interface 0

Ethernet II, Src: Cisco_6d:89:11 (c8:9c:1d:6d:89:11), Dst: Microsof_00:2a:02 (00:15:5d:00:2a:02)

    Destination: Microsof_00:2a:02 (00:15:5d:00:2a:02)

        Address: Microsof_00:2a:02 (00:15:5d:00:2a:02)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Source: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        Address: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Type: IP (0x0800)

Internet Protocol Version 4, Src: 10.0.0.48 (10.0.0.48), Dst: 10.0.0.100 (10.0.0.100)

    Version: 4

    Header length: 20 bytes

    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))

    Total Length: 52

    Identification: 0x1635 (5685)

    Flags: 0x02 (Don't Fragment)

    Fragment offset: 0

    Time to live: 64

    Protocol: TCP (6)

    Header checksum: 0x0ffc [correct]

    Source: 10.0.0.48 (10.0.0.48)

    Destination: 10.0.0.100 (10.0.0.100)

    [Source GeoIP: Unknown]

    [Destination GeoIP: Unknown]

Transmission Control Protocol, Src Port: netarx (1040), Dst Port: ldap (389), Seq: 39, Ack: 1, Len: 0

    Source port: netarx (1040)

    Destination port: ldap (389)

    [Stream index: 0]

    Sequence number: 39    (relative sequence number)

    Acknowledgment number: 1    (relative ack number)

    Header length: 32 bytes

    Flags: 0x011 (FIN, ACK)

        000. .... .... = Reserved: Not set

        ...0 .... .... = Nonce: Not set

        .... 0... .... = Congestion Window Reduced (CWR): Not set

        .... .0.. .... = ECN-Echo: Not set

        .... ..0. .... = Urgent: Not set

        .... ...1 .... = Acknowledgment: Set

        .... .... 0... = Push: Not set

        .... .... .0.. = Reset: Not set

        .... .... ..0. = Syn: Not set

        .... .... ...1 = Fin: Set

    Window size value: 8192

    [Calculated window size: 8192]

    [Window size scaling factor: 1]

    Checksum: 0x6a0b [validation disabled]

        [Good Checksum: False]

        [Bad Checksum: False]

    Options: (12 bytes), No-Operation (NOP), No-Operation (NOP), Timestamps

        No-Operation (NOP)

        No-Operation (NOP)

        Timestamps: TSval 9744, TSecr 63231644

            Kind: Timestamp (8)

            Length: 10

            Timestamp value: 9744

            Timestamp echo reply: 63231644

    [SEQ/ACK analysis]

No.     Time           Source                Destination           Protocol Length Info

     17 15.774640000   10.0.0.48             10.0.0.90             Syslog   68     LOCAL0.INFO: LDIR:Failed;error=-1\n

Frame 17: 68 bytes on wire (544 bits), 68 bytes captured (544 bits) on interface 0

Ethernet II, Src: Cisco_6d:89:11 (c8:9c:1d:6d:89:11), Dst: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

    Destination: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

        Address: Tp-LinkT_b1:0c:37 (00:27:19:b1:0c:37)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Source: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        Address: Cisco_6d:89:11 (c8:9c:1d:6d:89:11)

        .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)

        .... ...0 .... .... .... .... = IG bit: Individual address (unicast)

    Type: IP (0x0800)

Internet Protocol Version 4, Src: 10.0.0.48 (10.0.0.48), Dst: 10.0.0.90 (10.0.0.90)

    Version: 4

    Header length: 20 bytes

    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))

    Total Length: 54

    Identification: 0x1639 (5689)

    Flags: 0x00

    Fragment offset: 0

    Time to live: 64

    Protocol: UDP (17)

    Header checksum: 0x4ff5 [correct]

    Source: 10.0.0.48 (10.0.0.48)

    Destination: 10.0.0.90 (10.0.0.90)

    [Source GeoIP: Unknown]

    [Destination GeoIP: Unknown]

User Datagram Protocol, Src Port: 1024 (1024), Dst Port: syslog (514)

Syslog message: LOCAL0.INFO: LDIR:Failed;error=-1\n

0 Replies 0