Jump to content

Issue setting up LDAPS AD Sync Task


karsayor
 Share

Recommended Posts

Hi

I tried to setup LDAPS authentication & sync task in ESMC Virtual Appliance. I did according to this Configure LDAPS connection to a domain | ESET PROTECT | ESET Online Help and this Synchronization mode - Active Directory/Open Directory/LDAP | ESET PROTECT | ESET Online Help

It works fine for domain authentication in the console, but for the AD Sync task it doesn't. 

When setting up the task using Active Directory, it shows the following error. If I select LDAP instead of AD, it works fine but of course not secured.

Quote

Failed to load data: Active directory browsing failed. Check input server parameters and AD availability.: Trace info: SearchLdap: 'ldapsearch' failed with 255 exit code, stderr: ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1) additional info: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (unable to get local issuer certificate)

The task was working fine before enable LDAPS in virtual appliance settings so I think it's all good. The appliance is domain joined, has been upgraded through years (version 9.0 now installed)

Any idea what is going on ?

image.thumb.png.c3465864983a4f3b32e29bf04dfe1a09.png

I am trying to solve bind integrity verification issue on Domain Controllers :

image.thumb.png.cf4b10cd2993b9bbfc1543be1d014d04.png

Link to comment
Share on other sites

  • ESET Staff

From provided error it seems that appliance (as an operating system) is not able to verify certificate of your domain/LDAPs server. This will probably require installation of your CA certificate (used to verify certificate of your LDAPS server) into the operating system itself, so that also system tools do work properly and device can be joined.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...