000015928 - AM 7.1- Error reading external Identity Source: Connection to the identity source ActiveDirectory server failed because of an SSL-related problem

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000015928
Applies ToAuthentication Manager 7.1 on all supported platforms
Appliance 3.0
IssueSearch users in the External Secure Identity Source
A working SSL Identity source stops to function.
Users in the SSL external Identity source fail to authenticate successfully
When listing users in the external Identity source, you get the following Error: "Connection to the identity source Active Directory server failed because of an SSL-related problem. Verify that your certificate is correct."
CauseSSL connections on the Domain Controller have stopped to function properly.
Resolution

Correct the issue on the domain controller. Verify SSL is still enabled on the Active directory Server and port 636 is accessible. It's also good to double-check the certificates just to be sure that they have not expired.

A temporary workaround is to change the External Identity source to connect to port 389 without SSL until the issue on the Active Directory server is resolved.

Legacy Article IDa48278

Attachments

    Outcomes