Support Forum

[victor]

You should have user with equal login (or name) both in TrackStudio and ADS. Have you ?

Yes, I have a user with the login in ADS equal to the login and name in TS, is it ok?

Yes

Do I need any account to use ADS?
Do I need install or configure any thing to use the LDAP of ADS?

No, you need to know just server name and port.

Actually we are using ADS but not his LDAP port, I test it with TS and it is ok, but I dont know more about it and our administrator neither.

We test it with LDAP port and all works find with our ADS.
OK, I'll try to reproduce this bug.

I think that we have a administration problem (maybe a anonymous account would be needed too). I try to use WS_Ping ProPack to test the LDAP but the queries response is empty always.

We are going to check it more intensively this afternoon.

Thanks,

[admin]

I discovered that error is: ERROR_NO_SUCH_USER (Hex.525)

Maybe we have not the users in the LDAP database. I dont know this because we are not using it.

Possible, I understand the source of the problem - ADS support authorization only by name (not by login). Please try the following:
1) Create user with login and password exactly as in ADS (maximkr and Maxim L. Kramarenko, for me).
2) Set "authenticate by name" in LDAP properties and Save settings manually (press the "Save" button) - I just found bug with autosave-before-startup feature.
3) Login using your TrackStudio login and password (maximkr, for me).

When I try it - all work for me - you login using your login, TrackStudio found you user account, get username and use it to authenticate via LDAP.

[victor]

Possible, I understand the source of the problem - ADS support authorization only by name (not by login). Please try the following:
1) Create user with login and password exactly as in ADS (maximkr and Maxim L. Kramarenko, for me).
2) Set "authenticate by name" in LDAP properties and Save settings manually (press the "Save" button) - I just found bug with autosave-before-startup feature.
3) Login using your TrackStudio login and password (maximkr, for me).

When I try it - all work for me - you login using your login, TrackStudio found you user account, get username and use it to authenticate via LDAP.

Great!... You are right, I test using name authentication and all run fine.

Thanks a lot, this is a good improvement that we are going to enjoy with the 2.8 release when I change the people name ;)...

Well, I should start to check the user names but I prefer to ask you a thing before: do you think that the authenticate by login will be run in the 2.8 release?...

This is not a criticize question, I don't consider that don't include it in the final 2.8 release would be a fault, you scheduled to include LDAP authentication in 2.8 and authenticate by name offer this point very well and is perfect. But If you are going to solve the authenticate by login in this release then I dont do the check names task to use the actual LDAP solution based in user names, do you know? :)

Thanks for the assistance and the LDAP solution.

[admin]

[
Great!... You are right, I test using name authentication and all run fine.

Thanks a lot, this is a good improvement that we are going to enjoy with the 2.8 release when I change the people name ...

Well, I should start to check the user names but I prefer to ask you a thing before: do you think that the authenticate by login will be run in the 2.8 release?...

This is not a criticize question, I don't consider that don't include it in the final 2.8 release would be a fault, you scheduled to include LDAP authentication in 2.8 and authenticate by name offer this point very well and is perfect. But If you are going to solve the authenticate by login in this release then I dont do the check names task to use the actual LDAP solution based in user names, do you know?

Thanks for the assistance and the LDAP solution.

Thank you.

It seems that "authenticate by login" is not our problem, but some LDAP server configuration property. When you choose by name/by login we change no LDAP properties, we just call authenticate method with name or login.

Possible, ADS has some setting that allow authenticate by login but I am has no experience with it