AD ldap resolver Exception('Wrong credentials',)

When I test the ldap resolver I get the below screen and the log says.
[2015-04-13
15:53:48,634][9269][139684671203072][WARNING][privacyidea.lib.config:496]
unable to load resolver module : ‘resolvers.SCIMIdResolver’
(ImportError(‘cannot import name getResolverClass’,))

or if I set the bind type to NTLM I get ValueError(‘need more than 1 value
to unpack’,)

Thanks,

Todd

Works great.

ThanksOn Monday, April 13, 2015 at 9:04:11 PM UTC-7, Cornelius Kölbel wrote:

Hi Todd,
in AD the bind DN is

cn=users,

Not ou=

Kind regards
Cornelius

Cornelius Kölbel
Corneliu...@netknights.it <javascript:>
+49 151 2960 1417

NetKnights GmbH
http://netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798

Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel

-------- Ursprüngliche Nachricht --------
Von: Todd F <todd...@gmail.com <javascript:>>
Datum: 14.04.2015 00:59 (GMT+01:00)
An: priva...@googlegroups.com <javascript:>
Betreff: AD ldap resolver Exception(‘Wrong credentials’,)

When I test the ldap resolver I get the below screen and the log says.
[2015-04-13
15:53:48,634][9269][139684671203072][WARNING][privacyidea.lib.config:496]
unable to load resolver module : ‘resolvers.SCIMIdResolver’
(ImportError(‘cannot import name getResolverClass’,))

or if I set the bind type to NTLM I get ValueError(‘need more than 1 value
to unpack’,)

Thanks,

Todd
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Sure!

What I am working on is a xen server private cloud that needs more
security. I’m getting 2fa working on all of the outside facing servers.
For the internal dev servers, I would like to get shared key working, so
ultimately nothing works solely with a password, all of which will work
through privacyidea.
At the moment, there are only 2 test servers and the privacy idea server as
well as half written chef recipes for the automated deployment.
So far the user store from ad works and the 2fa works for ssh, gdm, and
working on sudo and su.

I am having problems with the ssh keys, but I’ll post that in that thread.

Thanks,

ToddOn Monday, April 13, 2015 at 9:04:11 PM UTC-7, Cornelius Kölbel wrote:

Hi Todd,
in AD the bind DN is

cn=users,

Not ou=

Kind regards
Cornelius

Cornelius Kölbel
Corneliu...@netknights.it <javascript:>
+49 151 2960 1417

NetKnights GmbH
http://netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798

Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel

-------- Ursprüngliche Nachricht --------
Von: Todd F <todd...@gmail.com <javascript:>>
Datum: 14.04.2015 00:59 (GMT+01:00)
An: priva...@googlegroups.com <javascript:>
Betreff: AD ldap resolver Exception(‘Wrong credentials’,)

When I test the ldap resolver I get the below screen and the log says.
[2015-04-13
15:53:48,634][9269][139684671203072][WARNING][privacyidea.lib.config:496]
unable to load resolver module : ‘resolvers.SCIMIdResolver’
(ImportError(‘cannot import name getResolverClass’,))

or if I set the bind type to NTLM I get ValueError(‘need more than 1 value
to unpack’,)

Thanks,

Todd

I am having the same exact issue. I have attached a screenshot of the
settings.On Monday, April 13, 2015 at 6:59:11 PM UTC-4, Todd F wrote:

When I test the ldap resolver I get the below screen and the log says.
[2015-04-13
15:53:48,634][9269][139684671203072][WARNING][privacyidea.lib.config:496]
unable to load resolver module : ‘resolvers.SCIMIdResolver’
(ImportError(‘cannot import name getResolverClass’,))

or if I set the bind type to NTLM I get ValueError(‘need more than 1 value
to unpack’,)

Thanks,

Todd
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