LDAP authentication over SSL is not working

book

Article ID: 37656

calendar_today

Updated On:

Products

CA Application Test Service Virtualization CA Continuous Application Insight (PathFinder) CA Service Virtualization (DevTest / LISA / VSE / Application Test)

Issue/Introduction

Symptoms:

- Try logging in to workstation where users are authenticated against the LDAP server configured over SSL, it fails.

- The same user have been able to successfully login earlier. No changes were done in the environment.

-  Workstation.log shown the errors below:

 [AWT-EventQueue-0] ERROR com.itko.util.swing.UserMessage - Error connecting to the LISA Registry.  Error message: Authenticate failed for user [username=43699263] with LDAP

com.itko.lisa.acl.AuthenticationException: Authenticate failed for user [username=43699263] with LDAP
at com.itko.lisa.acl.custom.BaseLDAPAuthenticationModule$1.doCallback(BaseLDAPAuthenticationModule.java:114)
at com.itko.lisa.gui.LisaGuiPanel.doProcessingDialog(LisaGuiPanel.java:559)
at com.itko.lisa.acl.custom.BaseLDAPAuthenticationModule.authenticateUser(BaseLDAPAuthenticationModule.java:124)
at com.itko.lisa.test.LisaSecurityManager.authenticateUser(LisaSecurityManager.java:658)
at com.itko.lisa.test.LisaSecurityManager.authenticateUserFromGUI(LisaSecurityManager.java:706)
at com.itko.lisa.gui.TestAdmin$1.doCallback(TestAdmin.java:193)
at com.itko.util.swing.panels.ProcessingDialog$2.run(ProcessingDialog.java:194)
at java.lang.Thread.run(Unknown Source)
Caused by: javax.naming.CommunicationException: glue.systems.uk.bbbb:3269 [Root exception is java.net.SocketException: java.security.NoSuchAlgorithmException: Error constructing implementation (algorithm: Default, provider: SunJSSE, class: sun.security.ssl.SSLContextImpl$DefaultSSLContext)]
at com.sun.jndi.ldap.Connection.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapClient.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapClient.getInstance(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
at javax.naming.InitialContext.init(Unknown Source)
at javax.naming.InitialContext.<init>(Unknown Source)
at javax.naming.directory.InitialDirContext.<init>(Unknown Source)
at com.itko.lisa.ext.bbbb.acl.BBBBLDAPAuthenticationModule.authenticateWithLDAP(BBBBLDAPAuthenticationModule.java:70)
at com.itko.lisa.acl.custom.BaseLDAPAuthenticationModule$1.doCallback(BaseLDAPAuthenticationModule.java:107)

 

Environment: 

- CA Lisa 7.1, 7.5.0 and 7.5.1

 

Cause:

- Identified as a Product Defect – RTC-114581

- A patch issued for another known issue [RTC-103457] has caused this side effect. The issue described in this article is due to placing the property file password encryption introduced with RTC-103457 product defect.

 

Resolution/Workaround:

 

- Log a new support ticket with CA Support requesting for the patch. Refer the defect Id RTC-114581 in the ticket. 

Environment

Release: LSASVR99000-7.1-LISA-Server
Component: