Lots of errors in CA TDM log files

book

Article ID: 208597

calendar_today

Updated On:

Products

CA Test Data Manager (Data Finder / Grid Tools)

Issue/Introduction

 

We have a lot of error message in the CA TDM log files that we would like to understand. 

Especially this one:
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 52e, v4563 ]

 
Can you please provide information regarding this issue

Cause

 

The Client has setup TDM to use LDAP/ AD for user Authentication.
These error messages are being returned directly from the LDAP/AD for authentication attempts.

Environment

 

TDM Portal  4.9

Test Data Manager

Resolution

 
 

based on the error provided:
[LDAP: error code 49 - 80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 52e, v4563 ]

this would suggest you have integrated TDM to work with your Local LDAP/ AD installation for user authentication.

The error you are seeing is not generated by TDM.
This is a message being sent back directly from your LDAP server and as such we will have limited insight into the details of this error.

a quick search of this shows that the 52e data that is returned means that the username is valid but the password is not correct:
Ldapwiki: Common Active Directory Bind Errors

below is an example of a failure with more details:
2021-02-09 08:15:50.016 [INFO ] [https-openssl-nio-8443-exec-6] --- [U:][M:][P:]                                  c.c.t.s.LDAPUtil:  Authentication failed for user: XXXXXX
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 775, v4563 ]
Wrapped by: org.springframework.ldap.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 775, v4563 ]; nested exception is javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 775v4563 ]

This error has the following meaning:
 Intruder Detection:Entry is currently locked out and may not be logged on to LDAP User-Account-Control Attribute - LOCKOUT

Please use the link above to review any other version of this as needed.
If you would like more details on why this is happening please engage your LDAP/AD admin for further troubleshooting.