ldap_bind: Invalid credentials (49) additional info: 80090308: LdapErr: DSID-0C09050F, comment: AcceptSecurityContext error, data 52e, v4f7c

Anonymous
2024-04-24T12:50:05+00:00

We have two forests - each forest has one DC i.e. DC - prod.com and test.com respectively. I've set up a transitive trust between the forest. I'm able to login into DC test.com using the username and password of DC prod.com in RDP. But I'm not able to do the ldapsearch through the same username and password of DC prod.com into DC test.com.

ldapsearch -vx -L -H ldaps://192.19..:636 -D '**@prod.com' -w '' -b "DC=test,DC=com" -s sub "(cn=*)"

I'm getting this error

ldap_bind: Invalid credentials (49) additional info: 80090308: LdapErr: DSID-0C09050F, comment: AcceptSecurityContext error, data 52e, v4f7c

Further more, I'm able to do the LDAP search through the respective DC account.

Windows for business | Windows Server | Directory services | User logon and profiles

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.

0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Anonymous
    2024-04-24T13:21:14+00:00

    Hello Sagar Rana1,

    Thank you for posting in Microsoft Community forum.

    Here are two similar threads for your references. You can troubleshoot the issue using the possible solution in the two threads.

    openldap - ldap_bind: Invalid Credentials (49) - Stack Overflow

    authentication - ldapsearch: Invalid credentials - Stack Overflow

    If it does not work above, please check if you can do the same search using built-in LDP.exe tool on Domain Controller.

    Another threads for your reference.
    Unable to bind or log into LDAP using specific credentials - Microsoft Q&A

    If ldapsearch is a non-Microsoft tool?

    I hope the information above is helpful.

    If you have any question or concern, please feel free to let us know.

    Best Regards,

    Daisy Zhou

    0 comments No comments