Error message in RSA Authentication Manager 8.x Security Console or Self-Service Console when logging in with LDAP password
Originally Published: 2013-08-01
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.0 patch 5 and earlier, 8.1
Issue
Administrator cannot authenticate to Security Console using LDAP password
The Authentication Activity monitor or report indicates:
ERROR,13002,Principal authentication,User "<userID>" attempted to authenticate using authenticator "LDAP_Password". The user belongs to security domain "SystemDomain",Failure,AUTHN_METHOD_FAILED,Authentication method failed
Cause
The LDAP password is expired from the Authentication Manager's perspective and requires update.
Because the connection between Authentication Manager and the LDAP server is using insecure ldap (no encryption) password update is not allowed.
Resolution
Alternatively, disable password expiration:
- Login to the Security Console with an account in the internal database (not an AD or SunOne account) that has full super admin privileges.
- Navigate to Authentication > Policies > Password Policies > Manage Existing and click on the policy being used for the affected Security Domain and click Edit.
- In the Lifetime section, uncheck Require periodic password changes.
- Click Save.
Notes
Related Articles
Firefox reports Secure Connection Failed when connecting to the RSA Security Console Number of Views Configure Security Console Authentication Methods Number of Views Unable to login to RSA Authentication Manager Security Console as super admin Number of Views Supported web browsers report an error message when accessing RSA Authentication Manager 8.1 Security Console or Operation… Number of Views About the Security Console Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
