Are you running a firewall at any point over the network between the FM server and the LDAP server?
No, I'm told there is no firewall between FMServer & LDAP.
On a side note; I was given an "Entry Point" of;
cn=LDAPbinding, o=XXX (where XXX is the clients acronym)
but the sample "Entry Point" displayed by FMServer is
I have no idea what either of those lines mean, I'm just assuming the IT guys gave me the correct info; can anyone tell if there's a problem with the entry point I was given?
Have you been through these:
http://help.filemaker.com/app/answers/detail/a_id/5508/related/1 (Seems old but still valid for v11)
Dimitris, I had already looked at these 2 articles and the 2 PDFs attached to them.
The knowledge base article defines the "Entry Point" as;
Entry Point. The distinguished name that specifies the location of FileMaker Server in the directory service.
I assume the values I was given by IT are correct but I really have no clue.
It also states that I need the SSL certificate on both FMServer & FMPro machines but nothing on how to install the certificate or where to put it. For the FMPro clients it says;
To install the client certificate on a Windows computer::
- On Windows, you can set a policy on the Domain Controller to automatically install the client certificates on the client computers.
so I hadn't even gotten to the point of dealing with this since I can't get FMServer to connect.
I just don't know where to go from here and appreciate the help you've been providing.
I'm no LDAP expert, but you may be missing the c level from the entry point. I 'd ask the IT guys how they have setup the Entry Point on the Directory Service and bring them onboard to assist with the setup.
For your info, have you seen these:
Frank may have a clicking FMS,
(The squeaky FMS gets the grease).
So why are you setting up the FMS LDAP? I'm very curious as I don't know anyone who uses it in FMS.
The LDAP definition in FMS is for 'Publishing a list of DB thru the LDAP service'.
If your desire is for Active Director login then your setting up in the wrong place.
I wanted the Single Sign On and since I didn't know much about LDAP or Active Directory I thought that it had to be setup using the "Directory Service Assistant" in the Admin Console.
The videos posted by Dimitris made me realize that this was completely wrong.
After re-reading the documentation a few times it made a bit more sense.
Sorry for all the confusion.