karsayor 8 Posted November 2, 2021 Posted November 2, 2021 Hi I tried to setup LDAPS authentication & sync task in ESMC Virtual Appliance. I did according to this : Configure LDAPS connection to a domain | ESET PROTECT | ESET Online Help and this Synchronization mode - Active Directory/Open Directory/LDAP | ESET PROTECT | ESET Online Help It works fine for domain authentication in the console, but for the AD Sync task it doesn't. When setting up the task using Active Directory, it shows the following error. If I select LDAP instead of AD, it works fine but of course not secured. Quote Failed to load data: Active directory browsing failed. Check input server parameters and AD availability.: Trace info: SearchLdap: 'ldapsearch' failed with 255 exit code, stderr: ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1) additional info: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (unable to get local issuer certificate) The task was working fine before enable LDAPS in virtual appliance settings so I think it's all good. The appliance is domain joined, has been upgraded through years (version 9.0 now installed) Any idea what is going on ? I am trying to solve bind integrity verification issue on Domain Controllers :
ESET Staff MartinK 384 Posted November 4, 2021 ESET Staff Posted November 4, 2021 From provided error it seems that appliance (as an operating system) is not able to verify certificate of your domain/LDAPs server. This will probably require installation of your CA certificate (used to verify certificate of your LDAPS server) into the operating system itself, so that also system tools do work properly and device can be joined.
karsayor 8 Posted November 4, 2021 Author Posted November 4, 2021 Ok I don't know why, I redid the process and it works now.. Thanks the the hint !
Recommended Posts