Forums - Thread Details
  • State Not Answered
  • Replies 2 replies
  • Subscribers 321 subscribers
  • Views 854 views
  • Users 0 members are here
Forum Actions
Related

LDAP not working on new server

Alex Bryan

Hi,

Please note how things are setup to clarrify the situation:

On premesis Sugar Enterprise Version 11.0.2


Server 1 (Existing Prod Server)
Server 2 (New Prod Server)


Both are running off the same database server host.
Both have their own IIS Server with config files for Sugar/php/elasticsearch etc.

Both have PHP installed with same extensions
Both are setup the same connecting to our Active Directory servers. The LDAP config is saved in the Database so the it is setup the same for both Server 1 and 2. This is configured in the Admin module (https://support.sugarcrm.com/Documentation/Sugar_Versions/11.0/Ent/Administration_Guide/Password_Management/#LDAP)
Both have their own DNS so we can use a test DNS for the new server.

Server 1 is able to authenticate using LDAP.
Server 2 is unable to authenticate using LDAP

Any suggestions or areas I can look closer would be appreciated.

  • 0

    hi Alex,

    looks like some some sort of firewall on server 2 preventing it to connect?! any logs you can share?

    another thought is.. in the server2, try to use an ldapbrowser or similar to connect using your credentials, binding un, attributes, etc.

    rafa

    SugarCRM | Principal Developer Advocate

  • 0 in reply to Rafael Fernandes

    Hi Rafael,

    Thank you for the suggestions. There are currently no Firewall restrictions in place. I also tested using the credentials saved for the LDAP authentication user on an active directory explorer and had no issues.

    I can also confirm that the php.ini has the php_ldap.dll installed. There are no php logs refering to the login attempt . Only the below from the sugar

    Thu Apr 28 16:59:03 2022 [10844][-none-][ERROR] An exception happened: ( 401: need_login)You must specify a valid username and password.

    I also looked through the windows event logs but could not see anything that stands out.

    Alex