I am trying to delete some users and create some new users
However I get "internal database error: when I try and delete and when I try and create a new user from Directory Service I get :LDAP server not available" messages
We have had a new router installed recently (Billion BiPAC 7800DOX), other than that there have been no config changes
Kerio Connect 8.1.2/ OSX Server 10.6.8
- Lisa Lyons (Kerio)
Firstly, Did you follow the instructions here? http://kb.kerio.com/product/kerio-connect/server-configurati on/ldap-and-directory-services/how-do-i-get-the-ldap-server- in-kerio-connect-to-work-with-microsoft-outlook-384.html
From the mailserver, are you able to ping the ldap server itself?
A command called kinit should be available in the command prompt on either Linux or Mac (any version). This command is used to issue Kerberos queries and can confirm if Kerio authentication should work. Here are 2 tests you should run.
Where, username is replaced by a valid user on the directory server such as diradmin or administrator. It will prompt you for a password, and return no errors if it works.
Another test also is critical. If the previous kinit command worked, there still might be a problem with the SMP host. Here is a test for this on mail.company.com
kinit -S host/mail.company.com<_at_>SERVER01.COMPANY.COM
It will give a Kerberos error if the mailserver machine is not properly joined.
Where, mail.company.com is the hostname of the mailserver, and SERVER01.COMPANY.COM is the kerberos realm name.
Be sure the DNS on the Linux mailserver is pointed to the DNS server provided by the Active Directory or Open Directory server. Many Kerberos issues are actually problems in DNS. The best policy is to always use the DNS provided by the directory service. Using 3rd party DNS is possible, but is not recommended and involves some configuration that is beyond the scope of this document. If it is not possible to use the correct DNS server, then be sure the correct DNS forwarding is configured so queries are still answered by the directory server machine.
If you're still seeing problems, I would recommend that you raise a proper support ticket for further advice.
[Updated on: Tue, 09 July 2013 12:31]
Kerio discussion forums are intended for open communication between forum
members and may contain information and material posted by members which may
be useful in learning about Kerio products. The discussion forums are not
intended to provide technical support for any specific product. Any
information implied or expressed in the discussion forums is that of the
posting member. Kerio is in no way responsible for the information posted in
the forums, or its accuracy. Kerio employees may participate in the
discussions, but their postings do not represent an offical position of the
company on any issues raised or discussed. Kerio reserves the right to
monitor and maintain the forums to promote free and accurate exchange of