Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Issue with SA and LDAP

SOLVED
Go to solution
Troulala_
Not applicable
‎01-28-2009 09:02:AM
‎01-28-2009 09:02:AM

Issue with SA and LDAP

Hello,

i have configured an access to an application through a SA4500 server.

2 authentication method have beend configured :

* 1st : certificate => it works fine

* 2nd : unencrypted LDAP => it works fine too, i can authenticate the users belonging to a fixed group (1 rule in the role mapping)

My problem is that after the second authentication, the Domain Controller asks for the user to change its password.

So the SA provides me a page in which i have to type the ancient password and two times the new passord.

And when i validate the change, i have this error message : "impossible to change the password. Impossible to connect on the authentication server." (the message is in french, i've translated it).

When i trace the communication between the SA and the Domain Controler, i can see that the communications are done on port tcp.389 (ldap) and after that on port tcp.636 (ldaps).

The problem is that the Domain Controler are not configured with LDAPS so it can not work.

I do not understand why the SA tries to connect on port tcp.636 as it is configured to work with an unencrypted connection.

Any idea ?

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
muttbarker_
Valued Contributor
‎01-28-2009 09:10:AM
‎01-28-2009 09:10:AM

Re: Issue with SA and LDAP

Password changes require LDAPS - they will not function with LDAP. That is why you are seeing the error. You can disable password management if you don't want users to change passwords through the SA, or enable encrpyted LDAP (you will need to install an valid certificate on your LDAP server to do so).
Message Edited by muttbarker on 01-28-2009 09:23 AM

View solution in original post

0 Kudos
1 REPLY 1
muttbarker_
Valued Contributor
‎01-28-2009 09:10:AM
‎01-28-2009 09:10:AM

Re: Issue with SA and LDAP

Password changes require LDAPS - they will not function with LDAP. That is why you are seeing the error. You can disable password management if you don't want users to change passwords through the SA, or enable encrpyted LDAP (you will need to install an valid certificate on your LDAP server to do so).
Message Edited by muttbarker on 01-28-2009 09:23 AM
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.