Hi,
I got a small home setup for testing and fiddeling around. So far I am just starting off with Proxmox and got a Homeassistant VM and a Ubiquity containter created by the proxmox helper scripts.
Till now I am using the root user to login and manage the Proxmox server but now I want to change this to administrate it with a Active directory server I got on a VMware server.
Both servers on the same network. The AD server got a Intermediate CA with a Offline RootCA
I edited the /etc/hosts to add the name of the server : 192.168.0.10 dc.homenet.local dc
I configured on the Proxmox server:
Realm: homenet
domain: homenet.local
Not Case sensitive
Server: dc.homenet.local
Port 635
Mode LDAPS
Verify certificate no
--Sync Options--
BindUser CN=prox mox,OU=Admins,DC=homenet,DC=local
Password
UserFilter: (memberOf=CN=proxmox,CN=Users,DC=homenet,DC=local)
So, Sync is working, User with respective groupmembership gets imported. Created a Group inside Proxmox and added the permission set of 'Administrator'.
Login is not possible, getting:
msg=80090308: LdapErr: DSID-0C09044B, comment: AcceptSecurityContext error, data 52e, v3839
After installing LDAP-UTILS I could make use of
ldapsearch -H ldap://192.168.0.10:389 -D "CN=prox mox,OU=Admins,DC=homenet,DC=local" -w <PW> -b "dc=homenet,dc=local"
give a result and browse the LDAP correctly
Changing the ldapsearch to LDAPS, getting error 500.
Even switching the REALM config to LDAP instead of LDAPS, still getting the same error messages.
What am I doing wrong here?
Thanks for your help
I got a small home setup for testing and fiddeling around. So far I am just starting off with Proxmox and got a Homeassistant VM and a Ubiquity containter created by the proxmox helper scripts.
Till now I am using the root user to login and manage the Proxmox server but now I want to change this to administrate it with a Active directory server I got on a VMware server.
Both servers on the same network. The AD server got a Intermediate CA with a Offline RootCA
I edited the /etc/hosts to add the name of the server : 192.168.0.10 dc.homenet.local dc
I configured on the Proxmox server:
Realm: homenet
domain: homenet.local
Not Case sensitive
Server: dc.homenet.local
Port 635
Mode LDAPS
Verify certificate no
--Sync Options--
BindUser CN=prox mox,OU=Admins,DC=homenet,DC=local
Password
UserFilter: (memberOf=CN=proxmox,CN=Users,DC=homenet,DC=local)
So, Sync is working, User with respective groupmembership gets imported. Created a Group inside Proxmox and added the permission set of 'Administrator'.
Login is not possible, getting:
msg=80090308: LdapErr: DSID-0C09044B, comment: AcceptSecurityContext error, data 52e, v3839
After installing LDAP-UTILS I could make use of
ldapsearch -H ldap://192.168.0.10:389 -D "CN=prox mox,OU=Admins,DC=homenet,DC=local" -w <PW> -b "dc=homenet,dc=local"
give a result and browse the LDAP correctly
Changing the ldapsearch to LDAPS, getting error 500.
Even switching the REALM config to LDAP instead of LDAPS, still getting the same error messages.
What am I doing wrong here?
Thanks for your help