Forum Discussion

Rosieodonell_16's avatar
Oct 11, 2016

Trying to LDAP query an AD LDS field

I currently have an access policy where i need to LDAP query a custom field on a AD LDS server. I get the following error when I try:

LDAP Module: Failed to bind with 'CN=testuser,OU=Service Accounts,OU=Groups,OU=Acounts,DC=domain,DC=com'. Internal (implementation specific) error.

I first authenticate users with AD auth to a different set of AD servers. The AD LDS server only has user info and a few custom fields. I want to run an ldapsearch from the F5 but i don't really know the syntax. I do have the following info:

- user account is testuser
- user account password is testpassword
- AD LDS Instance = DC=F5userAttribute,DC=domain,DC=com
- AD LDS server IP is
- the field i need to pull data from is "customSecretKey"

Just wondering what the syntax will be ldapsearch command.

2 Replies

  • Try this:

    ldapsearch -x -LLL -h -D "CN=testuser,OU=Service Accounts,OU=Groups,OU=Acounts,DC=domain,DC=com" -W -b "DC=F5userAttribute,DC=domain,DC=com" customSecretKey
  • Today I needed to run ldapsearch myself again. This one worked for me:

    ldapsearch -x -LLL -h -D '' -w 2secret! -b 'dc=example,dc=com' -s sub "(|(" sAMAccountName

    Did you get it to work for you?