Active Directory connection problem

vorka

Hi,

 

Is there are any log file for connecting with AD?

At the moment i can't figure out what is the problem. Just plain error: "Could not connect to the domain server. Check that you entered all necessary information correctly."

 

I know my credentials work. And if i try to put wrong password i get: "Could not complete authentication. Check taht user name and password are correct."

 

Domain server is: servername.domain.local

Username: domain\username

 

FSPM server and console version: 12.10.74204
PS! Tried previous version (12.00) also, but no luck.

 

Any help?

 

 

etomcat

Hello,

 

Does it work with the IP address for one of the AD servers?

 

Yours Sincerely: Tamas Feher, Hungary.

vorka

No, same error: "Could not connect to the domain server. Check that you entered all necessary information correctly."

vorka

How can i troubleshoot the connection between policy server and AD?

Tried without firewall - no luck. Policy server is seraver 2012 R2, added to domain.

gerema

Could you please ensure you have sufficient rights to query Active Directory from the root level.

vorka

Yes, i am using domain admin account!

vorka

As you can see, all the info is correct:

 

 

IP of DC:

 

User has domain admin rights:

 

And if i test with wrong password, i get different error. Therefore communication to AD is working:

 

So where do i look for error logs?

 

Best regards

Andri

gerema

Hello Andri,

 

Please, check <F-Secure installation folder>\Administrator\lib\Administrator.error.log

vorka

OK, got some useful info from admin log file:

at java.lang.Thread.run(Thread.java:745)
Caused by: javax.naming.AuthenticationNotSupportedException: [LDAP: error code 8 - 00002028: LdapErr: DSID-0C0901FC, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v1db1 ]

vorka

I got it working using LDAPS address. ldaps://ip.of.dc:636