I'm trying to configure a new zimbra 8 OSE installation with integrated active directory authentication.
We've AD users like email@example.com
and mail users in zimbra like firstname.lastname@example.org
Users in AD have the mail attribute correctly filled.
I've configured external auth on Active Directory, ldap filter (|(sAMAccountName=%u)(email@example.com) (mail=%n) ) and I create in zimbra an user like firstname.lastname@example.org, in this case AD auth works perfectly.
If I create an user like email@example.com AD auth doesn't work.
I've tried to modify filter leaving only (mail=%n) but it doesn't work too but with firstname.lastname@example.org it continue to work.
In audit.log i found this line:
Please help me!!
2012-10-31 13:35:44,023 WARN [qtp1991212971-380:http://127.0.0.1:80/service/soap/AuthRequest] [email@example.com;oip=xxx.xxx.xxx.xxx;ua=zclient/8.0.0_GA_5434;] security - cmd=Auth; firstname.lastname@example.org; protocol=soap; error=authentication failed for [email@example.com], external LDAP auth failed, LDAP error: - unable to ldap authenticate: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece;