000021700 - Error: 'You are not an authorized administrator' after importing Active Directly ldif file  install-iplanet.ldif when trying to log in to RSA ClearTrust Admin GUI

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021700
Applies ToRSA ClearTrust 5.5
Sun ONE Directory Server 5.2
The install-iplanet.ldif was modified to create the admin user in a location other than the user.basedn specified in ldap.conf
IssueError: "You are not an authorized administrator" after importing Active Directly ldif file, install-iplanet.ldif when trying to log in to RSA ClearTrust Admin GUI
CauseStarting with RSA ClearTrust 5.0, administrative users are treated as standard users in terms of where they are stored. When the RSA ClearTrust Admin GUI uses the Admin API to search for the login, it searches in the user.basedn specified in ldap.conf. If this Admin user is not in this location, you will receive this error. 
ResolutionTo correct this issue, either expand the search scope by modifying the user.basedn parameter and the user.scope parameters to search multiple locations as documented in ldap.conf, or ensure that the "Default Administrative User" is created in the same location as the user.basedn parameter.
Workaroundinstall-iplanet.ldif was modified to match location of a current administrator other than "admin"
Legacy Article IDa24390

Attachments

    Outcomes