ACF2 LDS getting message CAS2286E LDAP request failed. RC: 10 User DN:

book

Article ID: 194743

calendar_today

Updated On:

Products

CA ACF2 CA ACF2 - z/OS CA ACF2 - MISC CA LDAP Server for z/OS

Issue/Introduction

Trying to use ACF2 LDS to replicate LogonIDs to a local test AD server, now always fails with message:
CAS2286E LDAP request failed. RC: 10 User DN: CN=WER68944,OU=ACF2TEST,DC=aqatest,DC=seci URL: LDAP://145.253.10.161:7376 LDA...              

                            

Environment

Release : 16.0

Component : CA ACF2 for z/OS

Resolution

For example in the following LDAP.CPU2 record:

SET CONTROL(LDS)
LIST LDAP.CPU2

JGP  /  LDAP.CPU2 LAST CHANGED BY FRANK01 ON 11/27/01-15:42
               ACTIVE ADMINDN(acf2lid=admin) APPLNAME()
               BITDEFLT(CHARACTER/YN) NOBROADCST NOCHANGE DATEFMT(MMDDYYYY)
               DELETE INSERT LDSLABEL NEXTKEY(CPU2XRF) OBJCLASS(acf2lid) PSWDASIS
               URL(ldap://nnnn.nnn.nnn.nnn:389)
               USERDNS(acf2lid=%1, host=cpu2, o=cai, c=usa) XREF(NAME/Name PASSWORD/userPassword PHONE/Phone)

The NAME, PASSWORD and PHONE are valid ACF2 logonid fields.

The Name, userPassword and Phone are the LDAP attribute of the entry on the LDAP directory that corresponds to the logonid field name on the logonid record.