WissenCarquest Absent Member.
Absent Member.
1281 views

LDAP Logon Problem in new server

Hello All, 
As a part server migration, Unix team copied all 
PPM application home files from one server to another new server. We have LDAP integrated with PPM application. Please find the attached server.conf file. 
Old Application Server OS details : Linux cle-ppmdev02 2.6.18-238.1.1.el5PAE #1 SMP Tue Jan 4 13:53:16 EST 2011 i686 athlon i386 GNU/Linux 
New Applicatiom Server OS details : Linux dev-ppm01 2.6.32-220.el6.x86_64 #1 SMP Wed Nov 9 08:03:13 EST 2011 x86_64 x86_64 x86_64 GNU/Linux 

We got below error while logon with LDAP 
authentication. 

Error Message 
------------- 
The LDAP Server could not be reached. Please validate the LDAP_URL parameter in the server.conf file. (KNTA-10843). 

Please suggest me on this ASAP. 

 

Regards,

Prasad.

Tags (1)
0 Likes
5 Replies
Absent Member.. Mohit_Agrawal Absent Member..
Absent Member..

Re: LDAP Logon Problem in new server

Hi Prasad,

 

Please check once that you are supplying correct values the below parameters in Server.conf.

 

KINTANA_LDAP_ID : Specify the PPM Center account on the LDAP server.

 

KINTANA_LDAP_PASSWORD : Specify the PPM Center password on the LDAP server (#!#pwd#!#)

If you run the kConfig.sh script, the PPM Server configuration utility automatically encrypts this password.

 

LDAP_URL: Specify the comma-delimited list of LDAP URLs

AUTHENTICATION_MODE=ITG,LDAP

 

Also check whether you have overwritten the LdapAttribute.conf file in the <PPM_Home>/integration/ldap directory.

 

After providing all the parameters, run the kConfig.sh script from <PPM_Home>/bin on the PPM Server.

 

Edited: Can u please check once after commenting the parameter LDAP_SSL_PORT in server.conf as you have not supplied any value..

 

 

Thanks!!

Mohit Agrawal

 

 

0 Likes
Absent Member.. Oscar_Pereira Absent Member..
Absent Member..

Re: LDAP Logon Problem in new server

Hello Prasat,

 

What is the PPM version and service pack ?    there are two new parameters for LDAP introduced in version 9.1 sp4

 

Regards

Oscar P

0 Likes
WissenCarquest Absent Member.
Absent Member.

Re: LDAP Logon Problem in new server

PPM app version : 9.14 Service Pack : SP4

0 Likes
RyanLong
New Member.

Re: LDAP Logon Problem in new server

Sorry can explain or give example for KINTANA_LDAP_PASSWORD?

Thanks.

0 Likes
Aniruddh Sharma Contributor.
Contributor.

Re: LDAP Logon Problem in new server

If you are integrating with an SSL-enabled LDAP server, do the following:

  1. Get the entire trusted certificate chain of the LDAP server (Root CA/Intermediate Certificate/host Certificate, exported as Base-64 encoded X509.cer format) from your LDAP server administrator.

    Note: If the certificate chain is not in the correct X509.cer format, you can import it to Internet Explorer, and then export it in the correct format.

  2. Use the JDK Keytool utility (from jdk 1.4.2 or later) to import the certificate into the <JAVA_Home>/jre/lib/security/cacerts keystore file.

    Note: Your system administrator can help you use the JRE Keytool utility to import the LDAP server certificate chain into the JDK cacerts file.

  3. Change to the <JAVA_Home>/jre/lib/security directory, and run the command:

    keytool -import -trustcacerts -alias <SSL_LDAP_Host> -file <SSL_LDAP_CERT.cer> -keystore cacerts

    Note: The default cacerts keystore password is "changeit". For tighter security, you may want to change this password.

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.