Article ID: 836756 - View products that this article applies to.
This article has been archived. It is offered "as is" and will no longer be updated.
When you use Microsoft Outlook 2001 for Mac to search for objects in an Active Directory directory service, you may receive a Lightweight Directory Access Protocol (LDAP) error message that is similar to the following:
LDAP server error.
The directory service denied access. Verify the authentication settings for this directory service.
You also experience this symptom if you use Microsoft Outlook Express 5.0x for Macintosh or Microsoft Entourage 2001 for Mac to search for objects in the Active Directory.
This problem occurs because the LDAP clients that are listed in the "Applies To" section of this article do not support Integrated Windows authentication (formerly named NTLM or Windows NT Challenge/Response authentication). This problem may occur after you upgrade from Microsoft Exchange Server 5.5 to Microsoft Exchange 2000 Server. In Exchange Server 5.5, clear text authentication is supported. In Exchange 2000 Server, you have to use Integrated Windows authentication if you want to access Active Directory using LDAP.
To work around this problem, create or modify a user account in the Active Directory service configuration that can be used to connect to the Microsoft Exchange 2000 Server. To create a new user on a Microsoft Windows 2000 Server domain controller that does not contain any data in the Last name box, do the following:
Article ID: 836756 - Last Review: October 26, 2013 - Revision: 1.0