search cancel

Spectrum oneClick intermittently fails to allow log in with LDAP

book

Article ID: 253149

calendar_today

Updated On:

Products

DX NetOps CA Spectrum

Issue/Introduction

Intermittently fails to allow log in with  LDAP

Once in a while Spectrum will not allow people to log in. I wait a few minutes or the time of getting locked out and it lets me in.

Environment

Release : 21.2.x, 22.2.x

Cause

LDAP server connection times out and has to retry

Resolution

Please check with your network team or the LDAP admin to see what is causing this.

Additional Information

Enable login debug in oneClick admin page:

Go to the administration tab, then in the grey bar at the top select debug, then on the left, select web server debug page (runtime).

Scroll down to

 SSORB Security SP and turn it on

At the bottom, hit apply.

Debug is written to the tomcat log

(stdout.log on windows, catalina.out on Linux)

***************

Oct 28, 2022 08:01:23.040 (https-oneClick-443-exec-20) (SecuritySP) - Authenticating user with external directory server: 93180

Oct 28, 2022 08:01:23.088 (https-oneClick-443-exec-20) (SecuritySP) -   Getting user by search: sAMAccountName=93180

Oct 28, 2022 08:01:33.134 - Connection timed out: javax.naming.CommunicationException: javax.naming.CommunicationException: ldapcom:636 [Root exception is java.net.SocketTimeoutException: connect timed out]

Oct 28, 2022 08:01:33.134 (https-oneClick-443-exec-20) (SecuritySP) - Closing directory context