Defect #20699
Updated by Toshi MARUYAMA over 8 years ago
I configured "LDAP authentication" for our Active Directory. On Windows 2003 server x68 and Windows 2012 server x64 login attempts ends with the error (logged using WireShark): <pre> LDAPMessage bindResponse(1) invalidCredentials (80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 531, vece) </pre> which means "not permitted to logon at this workstation". The solution is to add AD server to "userWorkstations" list of each domain user, and it works. But it is a bad solution and our administrators does not accept this. This behavior was commented a year ago: #1913#note-29 https://www.redmine.org/issues/1913#note-29