« The Fischbowl: 2020 Vision | Main | IBM Widget »

LDAP: Active Directory errors

I was helping someone debug logging into Active Directory with LDAP.  I had performed a network trace and the reply to the BIND request stated:

resultCode: invalidCredentials (49)
errorMessage: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece.

A little Google search turned up the following:

Here is a list of Active Directory errors:
525 - user not found
52e - invalid credentials
530 - not permitted to logon at this time
532 - password expired
533 - account disabled
701 - account expired
773 - user must reset password

LDAP: error code 49.

Hmm, looking at the LDAP bindRequest, which was a simple bind, found that the user had passed domain/userid for the login account.  I hadn’t noticed before, that he had used a forward slash (/) instead of a back slash (\).  I had him retry and sure enough all was well.


Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)


This page contains a single entry from the blog posted on March 29, 2007 1:20 PM.

The previous post in this blog was The Fischbowl: 2020 Vision.

The next post in this blog is IBM Widget.

Many more can be found on the main index page or by looking through the archives.

Powered by
Movable Type 4.1