Configuring LDAP/LDAPS in Aria Operations for Networks shows LDAP authentication failed "LDAP: authentication failed"
Article ID: 368979
Updated On:
Products
Issue/Introduction
Configuring LDAP in Aria Operations for Networks shows LDAP authentication failed "LDAP: authentication failed"
Screenshot for the error from Aria Operations for Networks GUI as below:
Aria Operations for Network platform appliance log from location /var/log/arkin/restapilayer/restapilayer.STDOUT-####-##-##-hr.min.sec.log shows below entries:
2024-05-14T18:02:56.921Z ERROR vnera.restapilayer.AuthRealmManager dw-284755 - POST /auth/ldapConfiguration testLdapRealm:863 null context returned2024-05-14T18:02:56.921Z ERROR vnera.restapilayer.AuthResource dw-284755 - POST /auth/ldapConfiguration saveLdapConfiguration:398 Unable to validate LDAP connectioncom.vnera.restapilayer.I18nAuthenticationException: LDAP authentication failed at com.vnera.restapilayer.AuthRealmManager.testLdapRealm(AuthRealmManager.java:864) _[restapilayer-0.001-SNAPSHOT.jar:_] at com.vnera.restapilayer.AuthResource.saveLdapConfiguration(AuthResource.java:3975) _[restapilayer-0.001-SNAPSHOT.jar:_] at com.vnera.restapilayer.AuthResource.saveLdapConfiguration(AuthResource.java:3884) _[restapilayer-0.001-SNAPSHOT.jar:_] at jdk.internal.reflect.GeneratedMethodAccessor4549.invoke(Unknown Source) _[_:_] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) _[_:_] at java.lang.reflect.Method.invoke(Method.java:566) _[_:_] at org.glassfish.jersey.server.model.internal.ResourceMethodInvocationHandlerFactory.lambda_static_0(ResourceMethodInvocationHandlerFactory.java:52) _[jersey-server-2.30.1.jar:_] at org.glassfish.jersey.server.model.internal.AbstractJavaResourceMethodDispatcher_1.run(AbstractJavaResourceMethodDispatcher.java:124) _[jersey-server-2.30.1.jar:_] at org.glassfish.jersey.server.model.internal.AbstractJavaResourceMethodDispatcher.invoke(AbstractJavaResourceMethodDispatcher.java:167) _[jersey-server-2.30.1.jar:_] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.ReservedThreadExecutor_ReservedThread.run(ReservedThreadExecutor.java:409) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at org.eclipse.jetty.util.thread.QueuedThreadPool_Runner.run(QueuedThreadPool.java:1034) [jetty-util-9.4.48.v20220622.jar:9.4.48.v20220622] at java.lang.Thread.run(Thread.java:829) [_:_]
Note: The preceding log excerpts are only examples. Date, time, and environmental variables may vary depending on your environment.
Environment
Aria Operations for Networks 6.13.0
Aria Operations for Networks 6.14.0
Aria Operations for Networks 6.14.1
Cause
LDAP HOST is Secure (LDAPs).
LDAP URL used is LDAP and not LDAPS when configuration was initially done in Aria Operations for Networks GUI.
Port 389 is used instead of port 636.
Resolution
Modify the configuration and updated LDAP Host URL with LDAPS://##.###.#.#:636 in Aria Operations for Networks GUI.
Submit the configuration.
Attempt to Login to Aria Operations for Networks GUI with LDAPS Domain user account completes successfully.
Additional Information
Feedback
