LDAP: error code 53 - no global superior knowledge Error With CA LDAP for RACF and CA-PAM

book

Article ID: 128579

calendar_today

Updated On:

Products

CA Top Secret CA Top Secret - LDAP

Issue/Introduction



The setup is CA-LDAP 15.1 under RACF. When testing CAPAM v3.2 (as a replacement product for one of our OEM), the following error occurs:

LDAP: error code 53 - no global superior knowledge

Environment

Release:
Component: TSSLDP

Resolution

2 changes are needed in the LDAP slapd.conf file: 

1) The section: 

############################################################### 
# Below are the modules that provide interfaces to 
# different repositories. Uncomment the 'moduleload' 
# lines for the required interfaces only. If an 
# interface will not be used, do not uncomment it 
############################################################### 

needs the following line uncommented and needs to start in column 1: 

# moduleload back_racf_utf.dll 

This line provides LDAP access to the IBM RACF security database. 

2) The section: 

############################################################### 
# racf_utf database specific definition 
############################################################### 
  database racf_utf 
  suffix "host=HOSTNAME,o=YOURCOMPANY,c=us" 

needs the following lines moved so they start in column 1: 

database racf_utf 
suffix "host=HOSTNAME,o=YOURCOMPANY,c=us" 

Additional Information

Any lines in the slapd.conf file that do not start in column 1 are considered a comment.