XADM: How to Access the Directory Through LDAP When Search Control is Set (Exchange) (192306)
The information in this article applies to:
- Microsoft Exchange Server 5.5
- Microsoft Active Directory Service Interfaces 2.5
This article was previously published under Q192306 SYMPTOMS
A Lightweight Directory Access Protocol (LDAP) client querying the Exchange
directory using LDAP may fail with an access denied error when the search
control is set to restrict access to the Global Address List as described
in the following article in the Microsoft Knowledge Base:
182902
XADM: How to Set Up Container Level Search Control
This can happen even though the LDAP client authentication method appears
to be correct, using either Windows NT LAN Manager (NTLM) or simple
authentication (cn=<nt account>, cn=<nt domain>), and the Exchange Server
computer is configured to accept those LDAP authentication methods.
When you try to access the Exchange Server directory with Outlook Express
using the LDAP protocol, you get the following error message:
The specified Directory Service has denied access. Check the Properties
for this Directory Service and verify that your Authentication Type
settings and parameters are correct.
On the server you see the event:
Event ID: 1354
Source: MSExchangeDS
Description: "LDAP search request failed with error: 50."
CAUSE
This happens because your LDAP client tries to connect to the directory
using a search base for which you don't have permissions.
Modification Type: | Minor | Last Reviewed: | 3/7/2005 |
---|
Keywords: | kbprb KB192306 |
---|
|