guys, i was just playing around and what i did was instead of choosing domain type as global i chose domain list and added our domain xyz.com in there. now, when i type the search dn and validating attribute (i have put mail in here and tried sAMAccountName as well).. now when i do a test with an email address, i do get the parsed results but at the top of the window it says ldap test failed..
anyone has any idea why it is failing inspite of me getting the right information back. and is it better to use domain type based on our domain or global. i think domain type should be set to our perticular domain only.
please reply asap.
thanks in advance.
Intrusion Defender - LDAP Profile - Add New
Name the profile - I use the server name that I am using for the LDAP link
choose the Platform - Active Directory 2003 in my case
type in the IP address of the LDAP server
Port 389 - Non Secure or Secure depending on your configuration
User DN (type in the User name of an Active Directory account that has browse rights to the entire tree)
Password - type in that accounts password and Confirm it
Add multiple LDAP sources to improve reliability and speed of searches
Then go into LDAP Rules
Click on the ID of the existing Rule or Add New
Then click on Profiles (ordered)
Select the profile you wish to configure
In the Search DN - type dc=XY, dc=XYZ, dc=net
In the Serach Filter - (&(|(proxyAddresses=SMTP:<$EMAIL$>)(proxyAddresses=smtp:<$EMAIL$>)(mail=<$EMAIL $>)(userPrincipalName=<$EMAIL$>))(!(msExchRequireAuthtoSendTo=TRUE)))
Validate Attribute - objectClass
Mailhost Attribute - mailhost
Masq. Attribute - proxyAddresses
Go to the Test prarameters and enter an email address for one of your users.... and click Test
Should get a correct reply if you scroll down the page
-- or No results returned from the LDAP Server if the address doesn't exist