i have configured an access to an application through a SA4500 server.
2 authentication method have beend configured :
* 1st : certificate => it works fine
* 2nd : unencrypted LDAP => it works fine too, i can authenticate the users belonging to a fixed group (1 rule in the role mapping)
My problem is that after the second authentication, the Domain Controller asks for the user to change its password.
So the SA provides me a page in which i have to type the ancient password and two times the new passord.
And when i validate the change, i have this error message : "impossible to change the password. Impossible to connect on the authentication server." (the message is in french, i've translated it).
When i trace the communication between the SA and the Domain Controler, i can see that the communications are done on port tcp.389 (ldap) and after that on port tcp.636 (ldaps).
The problem is that the Domain Controler are not configured with LDAPS so it can not work.
I do not understand why the SA tries to connect on port tcp.636 as it is configured to work with an unencrypted connection.
Any idea ?
Solved! Go to Solution.