LDAP authentication error: LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 52e, vece
We are developing a LDAP authentication against Active Directory, we met the follow errors, although the username and password are correct.
LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 52e, vece
The user detail is: CN=Peter\, Lia\ ,OU=DEV,OU=HK_U,OU=cita,OU=US,DC=achtest,DC=local
As you may saw, the last name of this user has a backslash, plus a space in CN, we guess it may be the problem, since other users don't have this problem if the last name of users don't have a backslash and a space.
However we don't know how we can add a new user to duplicate this issue, since it's not way to add a new user with space in the end of name, the Active Directory will auto trim the space when system save the new user to database.
My questions are:
1. Do you have this kind of experience? Any idea to resolve?
2. How we can add a new user with a space in the end of last name? and then we can replicate this issue again?
Thanks in advance!
The error code 52e indicates invalid credentials. Check the list below as reference regarding all error codes.
525 user not found 52e invalid credentials 530 not permitted to logon at this time 531 not permitted to logon at this workstation 532 password expired 533 account disabled 701 account expired 773 user must reset password 775 user account locked
- Proposed as answer by Iain Price Tuesday, April 14, 2015 12:58 PM
An LDAP authentication error as below found when a bind using the user credentials is passed. The Account is in Active State. I could not fine an Error code with "534". Could anyone suggest the possible cause here..
LDAP: error code 49
- 8009030C: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 534, v1db1
Shajeer.K Windows Infrastructure
Needs downvote option to remove unhelpful response from MVP for, as everyone else spotted, the fact that google will bring people here for YEARS to come. Sure, i'll go read that "other thread" you dont even link. Thanks.
Helpfulness > self-righteousness :P
- Edited by Iain Price Tuesday, April 14, 2015 12:46 PM