I have an issue since I have install 9.192 (from 9.191), LDAP authentication failed each time.
The LDAP server is an AD, we did not make any modification on this server since several weeks.
I put the aua in debug mode and it seams the bindDN is missing during the LDAP request :
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Entering do_auth_directory: server=X.X.X.X port=389 ssl=0 bind_dn=ldapreader base_dn=DC=domain,DC=local"
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Canonized Bind DN: "
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Canonized Base DN: DC=domain,DC=local"
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Canonized username: user.name"
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="ldap_connect: input: $VAR1 = {
aua[13290]: 'sasl' => 0,
aua[13290]: 'ssl' => 0,
aua[13290]: 'bind_dn' => '',
aua[13290]: 'server' => 'X.X.X.X',
aua[13290]: 'port' => 389,
aua[13290]: 'bind_pw' => 'password'
aua[13290]: };
aua[13290]: "
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Trying regular bind with bind_dn and password."
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="ldapFilter: (&(objectClass=user)(objectcategory=Person)(sAMAccountName=user.name))"
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="do_auth_directory() directory authentication failed - LDAP call error
aua[13290]: "
aua[13290]: id="3007" severity="debug" sys="System" sub="auth" name="Active Directory authentication failed: LDAP call error
The "test server settings" works fine.
The "authenticate example user" does not work.
I think in the bind_dn field is not expected to be empty, could you check with your UTM if this field is also empty ?
