Remote Authentication fails using AIQUM
- Views:
- 238
- Visibility:
- Public
- Votes:
- 0
- Category:
- active-iq-unified-manager
- Specialty:
- OM
- Last Updated:
- 3/5/2024, 2:34:29 PM
Applies to
Active IQ Unified Manager (AIQUM) 9.6+
Issue
- Remote users cannot log into AIQUM but login with local users works
- Testing remote authentication takes a long time to complete and sometimes you will see the test fail with
Unknown authentication server error. Verify your authentication server configuration
- Issue happens when testing using port 389 or 636
- During remote authentication test, LDAP time limit exceeded error seen in
ocumserver.log
ERROR [ocumadmin][default task-243280] [service.setup. ldap. LdapService | testLdapUser][c.n.dfm. impl. rbac. LdapUserCheck] Unknown error. Verify yourauthentication server configuration..
org.springframework.ldap. TimeLimitExceededException: [LDAP: error code 3 - Timelimit Exceeded];nested exception is javax.naming. TimeLimitExceededException: [LDAP: error code 3 - TimelimitExceeded]; remaining name ' - Packet trace (tcpdump) from AIQUM to domain controller shows TCP connection resets