Adding Basic Authentication source fails while Advanced succeeds in Aria Operations
Article ID: 404184
Updated On:
Products
VCF Operations/Automation (formerly VMware Aria Suite)
Issue/Introduction
Configuring an Active Directory authentication source works as expected when the Domain Controller is specified directly in the configuration.
However, when the Auto option is specified as per the screenshot below, the test connection fails with the error:
Test unsuccessful for ldap: <Domain Controller FQDN>. Host Unreachable. Reason: SocketTimeoutException: connect timed out
Cause
When the Auto option is configured for the Host field, a DNS query is made to retrieve the list of domain controllers hosts and ports from DNS SRV records.
Resolution
- Ensure that the DNS SRV records on the DNS server are referencing the expected ports when using the Auto option to configure an Authentication Source in Aria Operations.
- Ensure that Aria Operations is permitted to access the relevant ports on the Domain Controller.
Additional Information
The DNS SRV configuration can be verified with the following commands (replacing <example.com>):
nslookup -type=srv _ldap._tcp.<example.com>
nslookup -type=srv _gc._tcp.<example.com>
Feedback
Yes
No
Powered by
