- PR -

ActiveDirectoryにユーザー名を1文字で登録したユーザーで、外部からログインしようとするとエラーになる。

1
投稿者投稿内容
Javaスターター
ベテラン
会議室デビュー日: 2004/06/14
投稿数: 67
投稿日時: 2006-05-25 10:11
おはようございます。
ActiveDirectoryの知識がないために初歩的な質問になってしまうかもしれませんが、
ご了承願います。
現在ActiveDirectoryでユーザー名を「1」、パスワードを「A」
にした登録し、ある組み込み機器からユーザー名を「1」、パスワードを「A」で
ログインすると、エラー(invalidCredentials 0x31)になって返ってきます。
(2文字以上の登録したユーザー名に関しては正しく認証できます。)
一応パケットログを取得したので、参照願います。
Frame 7を見てもらったらわかりますが、サーバーへの通知は正しくできているのですが。。。
おそらくサーバーの設定に問題があるのかと思いますが、違いますでしょうか?
サーバー:Windows 2000 server
ログ
No. Time Source Destination Protocol Info
1 0.000000 192.168.78.200 Broadcast ARP Who has 192.168.78.1? Tell 192.168.78.200

Frame 1 (42 bytes on wire, 42 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: ff:ff:ff:ff:ff:ff
Address Resolution Protocol (request)

No. Time Source Destination Protocol Info
2 2.635070 192.168.78.80 192.168.78.200 TCP 1025 > ldap [SYN] Seq=0 Ack=0 Win=3072 Len=0 MSS=1460

Frame 2 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 0, Ack: 0, Len: 0

No. Time Source Destination Protocol Info
3 2.635150 192.168.78.200 Broadcast ARP Who has 192.168.78.80? Tell 192.168.78.200

Frame 3 (42 bytes on wire, 42 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: ff:ff:ff:ff:ff:ff
Address Resolution Protocol (request)

No. Time Source Destination Protocol Info
4 2.635643 192.168.78.80 192.168.78.200 ARP 192.168.78.80 is at 00:80:92:0e:62:00

Frame 4 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Address Resolution Protocol (reply)

No. Time Source Destination Protocol Info
5 2.635653 192.168.78.200 192.168.78.80 TCP ldap > 1025 [SYN, ACK] Seq=0 Ack=1 Win=17520 Len=0 MSS=1460

Frame 5 (58 bytes on wire, 58 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: 00:80:92:0e:62:00
Internet Protocol, Src Addr: 192.168.78.200 (192.168.78.200), Dst Addr: 192.168.78.80 (192.168.78.80)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 1025 (1025), Seq: 0, Ack: 1, Len: 0

No. Time Source Destination Protocol Info
6 2.636319 192.168.78.80 192.168.78.200 TCP 1025 > ldap [ACK] Seq=1 Ack=1 Win=3072 Len=0

Frame 6 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 0

No. Time Source Destination Protocol Info
7 2.639936 192.168.78.80 192.168.78.200 LDAP MsgId=1 Bind Request, DN=S

Frame 7 (70 bytes on wire, 70 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 1, Ack: 1, Len: 16
Lightweight Directory Access Protocol
LDAP Message, Bind Request
Message Id: 1
Message Type: Bind Request (0x00)
Message Length: 9
Response In: 8
Version: 3
DN: S
Auth Type: Simple (0x00)
Password: A

No. Time Source Destination Protocol Info
8 2.643132 192.168.78.200 192.168.78.80 LDAP MsgId=1 Bind Result, invalidCredentials

Frame 8 (163 bytes on wire, 163 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: 00:80:92:0e:62:00
Internet Protocol, Src Addr: 192.168.78.200 (192.168.78.200), Dst Addr: 192.168.78.80 (192.168.78.80)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 1025 (1025), Seq: 1, Ack: 17, Len: 109
Lightweight Directory Access Protocol
LDAP Message, Bind Result
Message Id: 1
Message Type: Bind Result (0x01)
Message Length: 94
Response To: 7
Time: 0.003196000 seconds
Result Code: invalidCredentials (0x31)
Matched DN: (null)
Error Message: 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 525, v893

No. Time Source Destination Protocol Info
9 2.649253 192.168.78.80 192.168.78.200 TCP 1025 > ldap [ACK] Seq=17 Ack=110 Win=3072 Len=0

Frame 9 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 17, Ack: 110, Len: 0

No. Time Source Destination Protocol Info
10 2.651740 192.168.78.80 192.168.78.200 LDAP MsgId=2 Unbind Request

Frame 10 (61 bytes on wire, 61 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 17, Ack: 110, Len: 7
Lightweight Directory Access Protocol
LDAP Message, Unbind Request
Message Id: 2
Message Type: Unbind Request (0x02)
Message Length: 0

No. Time Source Destination Protocol Info
11 2.651942 192.168.78.200 192.168.78.80 TCP ldap > 1025 [FIN, ACK] Seq=110 Ack=24 Win=17497 Len=0

Frame 11 (54 bytes on wire, 54 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: 00:80:92:0e:62:00
Internet Protocol, Src Addr: 192.168.78.200 (192.168.78.200), Dst Addr: 192.168.78.80 (192.168.78.80)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 1025 (1025), Seq: 110, Ack: 24, Len: 0

No. Time Source Destination Protocol Info
12 2.652841 192.168.78.80 192.168.78.200 TCP 1025 > ldap [FIN, ACK] Seq=24 Ack=111 Win=3072 Len=0

Frame 12 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: 00:80:92:0e:62:00, Dst: 00:a0:c9:0a:fb:61
Internet Protocol, Src Addr: 192.168.78.80 (192.168.78.80), Dst Addr: 192.168.78.200 (192.168.78.200)
Transmission Control Protocol, Src Port: 1025 (1025), Dst Port: ldap (389), Seq: 24, Ack: 111, Len: 0

No. Time Source Destination Protocol Info
13 2.652865 192.168.78.200 192.168.78.80 TCP ldap > 1025 [ACK] Seq=111 Ack=25 Win=17497 Len=0

Frame 13 (54 bytes on wire, 54 bytes captured)
Ethernet II, Src: 00:a0:c9:0a:fb:61, Dst: 00:80:92:0e:62:00
Internet Protocol, Src Addr: 192.168.78.200 (192.168.78.200), Dst Addr: 192.168.78.80 (192.168.78.80)
Transmission Control Protocol, Src Port: ldap (389), Dst Port: 1025 (1025), Seq: 111, Ack: 25, Len: 0
1

スキルアップ/キャリアアップ(JOB@IT)