Hi,

most probably you are affected by [1], so could you please check certificates on all your AD servers?
You can verify using following command:

  ovirt-engine-extensions-tool --log-level=FINEST aaa login-user --user-name=<USERNAME> --profile=<PROFILE NAME>


Thanks

Martin

[1] https://bugzilla.redhat.com/show_bug.cgi?id=1465463


On Tue, Oct 10, 2017 at 6:13 PM, Luca 'remix_tj' Lorenzetto <lorenzetto.luca@gmail.com> wrote:
On Tue, Oct 10, 2017 at 4:41 PM, nicola gentile
<nicola.gentile.to@gmail.com> wrote:
> I run the command you suggest
> ldapsearch -h domaincontroller.dom.it -b "dc=dom,dc=it" -D user@dom.it
> -W -x sAMAccountName=user_to_search userPrincipalName | grep
> userPrincipalName
>
> This is the result:
>
> Enter LDAP Password:
> # requesting: userPrincipalName
>

Supposing you're using all the right parameters in ldapsearch command,
it seems that the user you were looking up is not a valid user in that
directory server.

Please check with someone that can access to AD and verify the status
of the user with ADSI Edit.

Luca


--
"E' assurdo impiegare gli uomini di intelligenza eccellente per fare
calcoli che potrebbero essere affidati a chiunque se si usassero delle
macchine"
Gottfried Wilhelm von Leibnitz, Filosofo e Matematico (1646-1716)

"Internet è la più grande biblioteca del mondo.
Ma il problema è che i libri sono tutti sparsi sul pavimento"
John Allen Paulos, Matematico (1945-vivente)

Luca 'remix_tj' Lorenzetto, http://www.remixtj.net , <lorenzetto.luca@gmail.com>
_______________________________________________
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users