"secd.ldap.noServers" in EMS when using SSL/TLS
Applies to
- ONTAP
- Third party LDAP servers
- SSL/TLS protocol
Issue
- After enabling SSL/TLS on the already existing LDAP configuration the following messages start appearing in EMS
secd.ldap.noServers: None of the LDAP servers configured for Vserver (VS1) are currently accessible via the network for LDAP service type (Service: LDAP (Active Directory), Operation: SiteDiscovery).
- Secd logs contain some of the following entries
Required certificate with CA NAME is not installed
LDAP TLS Alert generated is 'fatal:unknown CA '
error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
RESULT_ERROR_LDAPSERVER_SERVER_DOWN:7642
LDAP TLS Alert generated is 'fatal:decrypt error'
error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01
RESULT_ERROR_LDAPSERVER_CONNECT_ERROR:7652