external server authentication not working for FM7

[omega]

Hi All,

I would sincerely appreciate anyone shedding some light on my problem. We are converting some databases from FM6 to FM7. So, we decided to go for external server authentication.

I refered to thetech briefs concerning this and havetried for nearly a week with no luck.

We have set the groups in the work group manager and introduced changes in filemaker file and also set the settings in the FileMaker Server7 advanced.

Here is the problem-

In the Directory Service tab of FM Server 7, I entered

ip address of domain controller for Directory Service Name

389 -LDAP Port

Distinguished name - I tried various combinations

1. ou=FileMaker,dc=abc,dc=def,dc=geh,dc=edu (because the name of domain controller is abc.def.geh.edu)

2. ou=admin, dc=abc,dc=def,dc=geh,dc=edu

3. ou=Administrator,dc=abc,dc=def,dc=geh,dc=edu

4. cn=tried FileMaker and then admin and then Administrator

I am using Open Directory Services.

For the Login Settings, I tried

1. Login using Account - Administrator and then admin

2. Login as current user.

With all these permutations and combinations, I get two types of error messages

1. Registration with directory service failed. (Invalid DN syntax)

2. Registration with directory service failed. (Strong(er) authentication required)

And then I tried without the directory service. Then there are no messages logged in the event logs. However, when I login from the client machine to filemaker served database, with a username that is set to be authenticated externally,I get the message - You donot have the privileges to perform this action.

Any suggestions from anyone will bevery helpful. Also, I understand that ou=organizational unit and is used when weuse active directory. do we use cn or ou in case of open directory and how do i determine whatthe distinguished name is.

Thanks

[Steven H. Blackwell]

The LDAP settings have nothing to do with the External Server Authentication process. These external Accounts are either local Accounts on the FMS box or they are domain level accounts managed by either an Open Directory or Active Directory Domain Controller.

Check the External Server Authentication Tech Brief from the FMI Web Site for more information.

Steven