LDAP configuration fails to save with error

book

Article ID: 141658

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

We are getting error while configuring ldaps URL in identity providers configuration. Let us know is there any specific setting we need enable to make it working.

Cause

Issue seem to be due to certificate revocation

 WARNING 361 com.l7tech.server.identity.ldap.LdapIdentityProviderImpl: Could not establish context using LDAP URL <ldap-url>:636. Caused by: Certificate [cn=<user> path validation and/or revocation checking failed

Environment

Release : 9.2

Component : API GTW ENTERPRISE MANAGER

Resolution

Import CA root certificate from ldap server to trust store in gateway.

 

Additional Information

Instructions for importing certificate

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-api-management/api-gateway/9-4/security-configuration-in-policy-manager/tasks-menu-security-options/manage-certificates/import-a-certificate.html