Error when testing LDAP configuration in DX NetOps

book

Article ID: 223664

calendar_today

Updated On:

Products

CA Performance Management - Usage and Administration DX NetOps

Issue/Introduction

Configured LDAP Single Sign-On in DX NetOps Performance Manager.

Using a Service Account and when I run a test using the SsoConfig tool I get this error:

SSO Configuration/DX NetOps/Test LDAP
Enter username > LDAP_User-Name
Enter password > LDAP_User-Passwd
The UserBind option has been selected. We will now perform the first bind with the LdapConnectionUser and LdapConnectionPassword supplied in the SSO Config utility.
ldapSearchDomain = LDAP://LDAP-Host.com/
ldapTimeout = 10000
DirContext.SECURITY_AUTHENTICATION = simple
Could not read the provided ldapEncryption mechanism. Defaulting to SIMPLE authentication
DirContext.SECURITY_PRINCIPAL = CN=CN-value,OU=OU-value,OU=OU-value,DC=DC-value,DC=com
DirContext.SECURITY_CREDENTIALS set
Could not obtain a DirectoryContext.
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09044E, comment: AcceptSecurityContext error, data 52e, v2580]
Logon failure: unknown user name or bad password.
Bind to the directory failed.

Cause

Service Account specified was not set up properly in LDAP configuration as a Service Account.

Environment

All supported DX NetOps Performance Management releases

Resolution

Engage the LDAP Administration team for assistance resolve the problem. Once the user is a properly configured Service Account the configuration should begin working properly.

Additional Information

Enable LDAP Authentication documentation