Remote Authentication fails using AIQUM
Applies to
Active IQ Unified Manager (AIQUM) 9.6+
Issue
- Remote users cannot log into AIQUM but login with local users works
- Testing remote authentication takes a long time to complete and sometimes you will see the test fail with
Unknown authentication server error. Verify your authentication server configuration
- Issue happens when testing using port 389 or 636
- During remote authentication test, LDAP time limit exceeded error seen in
ocumserver.log
ERROR [ocumadmin][default task-243280] [service.setup. ldap. LdapService | testLdapUser][c.n.dfm. impl. rbac. LdapUserCheck] Unknown error. Verify yourauthentication server configuration..
org.springframework.ldap. TimeLimitExceededException: [LDAP: error code 3 - Timelimit Exceeded];nested exception is javax.naming. TimeLimitExceededException: [LDAP: error code 3 - TimelimitExceeded]; remaining name ' - Packet trace (tcpdump) from AIQUM to domain controller shows TCP connection resets