|Applies To||RSA Product Set: SecurID|
RSA Product/Service Type: RSA Authentication Manager
RSA Version/Condition: 7.x, 8.x
|Issue||The test connection for LDAP is not working in the Operations Console, however there is no problem in the network connectivity on either LDAP port 389 or LDAPS port 686. The issue is resolved if you changed the protocol from LDAP to LDAPS.|
When testing, the following error displays:
There was a problem processing your request.
Testing from an SSH session with open_ssl s_client is successful:
In a packet capture from Authentication Manager, you will find that the connection failed with the following error, as shown in the screen shot below:
The server requires binds to turn on integrity checking if SSL/TLS are not already active on the connection.
|Cause||There is a policy change applied to the Active Directory server.|
How to check the server LDAP signing requirement:
|Resolution||In order to solve this problem we can perform one of two solutions|