Échec de la lecture de la structure Active Directory (Check reading of the Active Directory structure)

[redouaneelkhalyly 0]

Bonjour,

J'ai plusieurs contrôleurs de domaine et j'ai installé le console d'administration dans un serveur DC.
j'ai déjà créer des tâches serveurs pour synchroniser les utilisateurs et les groupes d'utilisateurs à partir d'Active Directory, tout les paramètres fonctionne correctement, mais après la dernière mise à jours des programmes vers:

ESET PROTECT (Server), Version 8.0 (8.0.1258.0)
ESET PROTECT (Console Web), Version 8.0 (8.0.191.0)

après l’exécution de la tache: Failed to get rootDSE. Error code = 0x8007203a, Le serveur n’est pas opérationnel. Error code: 0x8007203a

J'ai essayer de suivre ce tuto sans résultat.

https://help.eset.com/esmc_admin/72/fr-CA/st_user_synchronization.html

 

Merci de m'aider pour résoudre le problème de synchronisation des utilisateurs de autres controleurs de domaine.

Failed to get rootDSE. Error code = 0x8007203a, Le serveur n’est pas opérationnel. Error code: 0x8007203a

Failed to get rootDSE. Error code = 0x8007203a, Le serveur n’est pas opérationnel. Error code: 0x8007203a

Failed to get rootDSE. Error code = 0x8007203a, Le serveur n’est pas opérationnel. Error code: 0x8007203a

Machine translation:

I have additional controllers at home and have installed the administration console in a DC server.

I have created a range of server providers to synchronize the users and groups of users in the Active Directory, all functional parameters correct, but also the last mission of the programs in the following languages:
ESET PROTECT (Server), Version 8.0 (8.0.1258.0)
ESET PROTECT (Console Web), Version 8.0 (8.0.191.0)

after the tach extraction: Failed to get rootDSE. Error code = 0x8007203a, The server is not operational. Error code: 0x8007203a

I want to follow this without result.

https://help.eset.com/esmc_admin/72/fr-CA/st_user_synchronization.html

Thank you for resolving the problem of synchronization of users of other domain controllers.

Failed to get rootDSE. Error code = 0x8007203a, The server is not operational. Error code: 0x8007203a

Failed to get rootDSE. Error code = 0x8007203a, The server is not operational. Error code: 0x8007203a

Failed to get rootDSE. Error code = 0x8007203a, The server is not operational. Error code: 0x8007203a

Edited February 16, 2021 by Marcos
Machine translation added

[Marcos 5,074]

I've found a similar ticket with this resolution:

Windows ESMC 7.2 server uses by default LDAPS protocol. By selecting check box LDAP fallback, standard LDAP protocol is used.

For successful connection to Active Directory with LDAPS protocol it is necessary to meet this requirements:
1. FQDN of a domain controller must be used. IP address is no longer enough.
2. Domain controller must have installed issued machine certificate. This can be checked by opening mmc -> Certificates (Local machine) -> Personal certificates -> a certificate with FQDN of the domain controller must be present there.

It is possible to use for testing LDP tool that is part of Remote Server Administration Tools (RSAT). It is a Windows feature that must be added. After the tool is installed, execute it and from the menu select Connect, fill in DC's FQDN, port 636 and select checkbox SSL. A connection must succeed. Otherwise machines are not configured properly.

To issue a certificate for your domain controller, you must do following:
1. Install Active Directory Certification Authority (AD CA) role and finish the configuration. At the end a new certification authority would be present in Trusted Root Certificates.
2. Navigate to mmc -> Certificates (Local machine) -> Personal certificates -> right click into the empty pane -> All tasks -> New certificate -> Enroll Domain Controller role. This should produce a new certificate with DC's FQDN and place it into Personal certificates.

[redouaneelkhalyly 0]

J'ai essayer de créer le certificat et suivre ce que tu m'a dit dans votre réponse.

j'ai encore ce code d'erreur lors de la synchronisation : ldap_connect failed with 0x51, Serveur hors service

[Marcos 5,074]

This is an English forum, please post in English or we won't understand and be able to help.