This is the results: (which works)
-> ldapwhoami -D uid=blabla,ou=people,dc=domain,dc=net -x -w 'bla'
dn:uid=blabla,ou=People,dc=domain,dc=net
the above bind produced these logs: (notice mech=SIMPLE bind_ssf=0 ssf=0 is there)
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 fd=66 ACCEPT from IP=[::1]:59110 (IP=[::]:389)
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=0 BIND dn="uid=blabla,ou=people,dc=domain,dc=net" method=128
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=0 BIND dn="uid=blabla,ou=People,dc=domain,dc=net" mech=SIMPLE bind_ssf=0 ssf=0
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=0 RESULT tag=97 err=0 qtime=0.000025 etime=0.027784 text=
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=1 EXT oid=1.3.6.1.4.1.4203.1.11.3
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=1 WHOAMI
Oct 19 12:25:58 ldap-server slapd[47122]: conn=1045953 op=1 RESULT oid= err=0 qtime=0.000033 etime=0.000161 text=
Like i had mentioned before i noticed that when salt-master binds to ldap when using `salt -a ldap bla` the binding is the same as shown in the logs above.
But when trying to auth through the api, the mechanism is missing and auth fails.
Oct 19 12:35:08 ldap-server slapd[47122]: conn=1046535 fd=66 ACCEPT from IP=[x:x:x]:34820 (IP=[::]:389)
Oct 19 12:35:08 ldap-server slapd[47122]: conn=1046535 op=0 BIND dn="uid=blabla,ou=people,dc=domain,dc=net" method=128
Oct 19 12:35:08 ldap-server slapd[47122]: conn=1076 op=1 ENTRY dn="uid=blabla,ou=people,dc=domain,dc=net"
Oct 19 12:35:08 ldap-server slapd[47122]: conn=1038 op=1 ENTRY dn="uid=blabla,ou=people,dc=domain,dc=net"
Oct 19 12:35:08 ldap-server slapd[47122]: conn=1046535 op=0 RESULT tag=97 err=49 qtime=0.000026 etime=0.029017 text=
Since the ldap configuration on the salt server side is the same, and it works fine with regular `salt` cmds but not with api, then either i have a misconfiguration or maybe a bug.
Thank you again for the reply
Best,
Dave