on 02-08-2018 6:51 AM
Hello Everyone,
I am trying to provision the user/set password from SAP IDM 8.0 to Microsoft AD over the SSL, however, received the below error.
Steps performed -
1) Set the 636 as LDAP SSL port in the AD repository
2) Install the AD certificate in the IDM runtime server and verified that its exists in the certificate store.
3) ensured that SSL port and SSL is selected as Security options in To LDAP pass.
Please let me know If I missed anything. Please note that telnet over 636 port to AD server is working fine from my SAP IDM server and user provisioning over 389 port is also working fine.
MessageTypeMessageErrorToDSADirect.init got exception, returning false. - URL:ldap://<AD_SERVER_IP>:636
java.lang.Throwable: <AD_SERVER_IP>:636 ErrorInit failed
Regards,
C Kumar
Hi Kumar,
As per the below post, i believe you need to use LDAPS in the URL and hope the certificate is available in the java key stroke
https://archive.sap.com/discussions/message/16770714#16770714
Regards,
Deva
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
What value are you passing under Directory LDAP Port field in ToLDAP Pass. As you mentioned above Is it %$rep.LDAP_PORT_SSL%.?
What values are you passing to the LDAP attributes? Can you please provide screenshot?
which LDAP attribute are you using to set password in AD and what value are you passing to it?
for example, if you are passing as below, it should work.
Attribute Value
dn %dnvalue%
changetype modify
unicodePWD {HEX}passwordinhexadecimal format
Regards,
Deva
Hi,
did you see this post?
https://answers.sap.com/questions/12687347/error-while-provisioning-user-to-ad-over-ssl-idm-8.html
Maybe it helps in your case as well.
Best regards,
Alexander Brietz
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
101 | |
13 | |
13 | |
11 | |
11 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.