search cancel

How to troubleshoot LDAP error code 49 Invalid Credentials

book

Article ID: 214177

calendar_today

Updated On:

Products

CA Automic Applications Manager (AM)

Issue/Introduction

When configuring LDAP for Applications Manager, the following error can be seen when testing the LDAP connection:

LDAP authentication error : [LDAP: error code 49 - Invalid Credentials] : null
               at com.appworx.server.data.AxRmiServer.validateLDAPConfiguration(AxRmiServer.java:2518)
               at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
               at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
               at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
               at java.lang.reflect.Method.invoke(Method.java:498)
               at com.uc4.be.util.InvokeUtil.invoke(InvokeUtil.java:122)
               at com.appworx.util.InvokeRequest.invokeMethod(InvokeRequest.java:47)
               at com.appworx.server.data.C.A(ClientServices.java:150)
               at com.appworx.server.data.C.A(ClientServices.java:132)
               at com.appworx.server.data.D$_A.doRun(RemoteClientSocketManager.java:170)
               at com.uc4.be.threading.AbstractWorker.run(AbstractWorker.java:367)
               at java.lang.Thread.run(Thread.java:748)

 

 

Cause

This error is due to the LDAP user and/or password being incorrect. Additionally, if the Distinguished name (dn) value is incorrect, the same error is generated. To determine the correct dn value, please see solution

Environment

Release : 9.x

Component : APPLICATIONS MANAGER

Resolution

The best way to troubleshoot this error is to download a third party LDAP browser and editor such as the free open source app Jxplorer (www.jxplorer.org), and check the connection with the same LDAP parameters used in Applications Manager. This can be done by:

1. Open up Jxplorer, select File, and select Open

2. Work with the LDAP admin to fill out required LDAP parameters seen below.

3. Level value should be "User + Password"

4. Once a connection is successful, note the parameter values used in the "User DN:" field, User, and password. This is the value that should that should be used in Applications Manager's LDAP dn value.

For example, if the following is results in a successful log in from Jxplorer:
User DN: cn=appworx,cn=users,dc=brd,dc=com
Password: test1234

The above value should translate to the following value when testing the LDAP connection in Applications Manager

Distinguished name (dn): cn={uid},cn=users,dc=brd,dc=com
Login Id: appworx
Password: test1234

Note that Authentication mechanism value can be queryServer or simple

Attachments