Originally posted by: SystemAdmin

Hi,

I am working on AIX-AD integration project. In which Windows active directory will do the authentication for AIX server. I am using Kerberos and LDAP authentication method for AIX users.

I have configured Kerberos and LDAP client on AIX server. I am able to do the LDAP pre authentication check.

in below the output u can see that I am able to connect to AD server from AIX server.

bash-2.05b# ls-secldapclntd

ldapservers=90462000dc105.fin.hq.sgr #### Windows AD Server##########

ldapport=389

ldapversion=3

userbasedn=OU=Domain Controllers,DC=fin,DC=hq,DC=sgr

groupbasedn=CN=Users,DC=fin,DC=hq,DC=sgr

idbasedn=

usercachesize=1000

usercacheused=0

groupcachesize=100

groupcacheused=0

usercachetimeout=300

groupcachetimeout=300

heartbeatT=300

numberofthread=10

connectionsperserver=10

alwaysmaster=no

authtype=LDAP_AUTH

searchmode=ALL

defaultentrylocation=LDAP

ldaptimeout=60

userobjectclass=user,person,organizationalperson

groupobjectclass=group

If you see the above output I am able to connect to AD server.

I am getting error when I am doing query to AD server with “lsldap” command.

bash-2.05b# lsldap hosts

Object(s) not found: "*"

bash-2.05b# lsldap -a passwd karkian

Object(s) not found: "karkian"
can somebody help me to resolve this problem???
#AIX-Forum

Originally posted by: SystemAdmin

I am also having this problem.

AIX LDAP client can connect to AD server, but it cannot find any users or groups.

usercacheused=0 remains forever in the smitty daemon status.

ldaptimeout is maxed out at 3600 seconds.
#AIX-Forum