LDAP configuration fails to save with error
search cancel

LDAP configuration fails to save with error

book

Article ID: 141658

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

We are getting error while configuring ldaps URL in identity providers configuration. Let us know is there any specific setting we need enable to make it working.

Environment

Release : 9.X 10.X 11.X

Component : API GTW ENTERPRISE MANAGER

Cause

Issue seem to be due to certificate revocation

 WARNING 361 com.l7tech.server.identity.ldap.LdapIdentityProviderImpl: Could not establish context using LDAP URL <ldap-url>:636. Caused by: Certificate [cn=<user> path validation and/or revocation checking failed

Resolution

Import CA root certificate from ldap server to trust store in gateway.

 

Additional Information

Instructions for importing certificate

https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-gateway/10-1/security-configuration-in-policy-manager/tasks-menu-security-options/manage-certificates/import-a-certificate.html