Unable to start the IAM Service after updating the new LDAP Bind DN account password.
Can see below entries/exceptions in server.log:
2020-05-06 06:01:17,268 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 54) MSC000001: Failed to start service jboss.undertow.deployment.default-server.default-host./auth: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./auth: java.lang.RuntimeException: RESTEASY003325: Failed to construct public org.keycloak.services.resources.KeycloakApplication(javax.servlet.ServletContext,org.jboss.resteasy.core.Dispatcher)
:
:
Caused by: org.keycloak.models.ModelException: LDAP Query failed
:
:
Caused by: org.keycloak.models.ModelException: Could not query server using DN
:
:
Caused by: javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
:
:
All supported DevTest releases.
This issue issue happens because when IAM service is starting it will try to establish the LDAP connection with Bind DN details and fails to do so as the password has been changed before restart.
It is not the right practice to Stop or restart IAM service for updating the Bind credentials.