Login error: ldap: initial bind for user: Invalid Credentials - Active Directory

Hi All,

I’ve installed the ondemand-dex service and configured LDAP. The bind account authenticates successfully via a ldapsearch but not via the OpenOnDemand interface as per the error below. Any recommendations or opinions?

Internal Server Error

Login error: ldap: initial bind for user “cn=bind account,ou=users,dc=home,dc=lab” failed: LDAP Result Code 49 “Invalid Credentials”: 80090308: LdapErr: DSID-0C090434, comment: AcceptSecurityContext error, data 52e, v4f7c

dex:
connectors:

  • type: ldap
    id: ldap
    name: ActiveDirectory
    config:
    host: home.lab:389
    insecureNoSSL: True
    insecureSkipVerify: True
    rootCA: “/etc/ood/dex/myCA.pem”
    bindDN: “cn=bind account,ou=users,dc=home,dc=lab”
    bindPW: “xxxx”
    usernamePrompt: “AD Username”
    userSearch:
    baseDN: CN=Users,DC=home,DC=lab
    filter: “(objectClass=user)”
    username: sAMAccountName
    idAttr: sAMAccountName
    nameAttr: sAMAccountName
    groupSearch:
    baseDN: dc=home,dc=lab
    filter: “(objectClass=group)”
    userAttr: distinguishedName
    groupAttr: member
    nameAttr: cn

Regards
Tim