Jump to content

Issue setting up LDAPS AD Sync Task


karsayor
 Share

Recommended Posts

Hi

I tried to setup LDAPS authentication & sync task in ESMC Virtual Appliance. I did according to this Configure LDAPS connection to a domain | ESET PROTECT | ESET Online Help and this Synchronization mode - Active Directory/Open Directory/LDAP | ESET PROTECT | ESET Online Help

It works fine for domain authentication in the console, but for the AD Sync task it doesn't. 

When setting up the task using Active Directory, it shows the following error. If I select LDAP instead of AD, it works fine but of course not secured.

Quote

Failed to load data: Active directory browsing failed. Check input server parameters and AD availability.: Trace info: SearchLdap: 'ldapsearch' failed with 255 exit code, stderr: ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1) additional info: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (unable to get local issuer certificate)

The task was working fine before enable LDAPS in virtual appliance settings so I think it's all good. The appliance is domain joined, has been upgraded through years (version 9.0 now installed)

Any idea what is going on ?

image.thumb.png.c3465864983a4f3b32e29bf04dfe1a09.png

I am trying to solve bind integrity verification issue on Domain Controllers :

image.thumb.png.cf4b10cd2993b9bbfc1543be1d014d04.png

Link to comment
Share on other sites

  • ESET Staff

From provided error it seems that appliance (as an operating system) is not able to verify certificate of your domain/LDAPs server. This will probably require installation of your CA certificate (used to verify certificate of your LDAPS server) into the operating system itself, so that also system tools do work properly and device can be joined.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...