LDAP SSL Error after upgrading to 10.1

Previous topic - Next topic
Print
Go Down Pages1
User actions

cchatter

September 20, 2018, 07:40:57 PM
After upgrading to OD 10.1.0.3 from 9.0.0.3, seeing the error below and not able to authenticate to LDAP.  If SSL is turned off, authentication works fine.  Anyone see this problem before?  Anyone out there running this version with SSL to LDAP


Running GSK  8.0.50.75

2018-09-17 16:13:11.900262 ARSSOCKD           0 Error No    384 LDAP  Error: The SSL library cannot be loaded. -- ldap_rc=118,  --         

Justin Derrick

#1
September 21, 2018, 06:40:52 PM
Check to make sure that you've also upgraded your version of GSKit, and that the environment variables containing the path to the GSKit is correct before you start arssockd.

Remember that CMOD is now a 64-bit application, so you may need lib64 or bin64 directories in your path.

-JD.
Call:  +1-866-533-7742  or  eMail:  jd@justinderrick.com
IBM CMOD Wiki:  https://CMOD.wiki/
FREE IBM CMOD Webinars:  https://CMOD.Training/
IBM CMOD Professional Services: https://CMOD.cloud

Interests: #AIX #Linux #Multiplatforms #DB2 #TSM #SP #Performance #Security #Audits #Customizing #Availability #HA #DR

jaggu1982

#2
September 26, 2018, 08:08:27 PM
JD, Issue is not resolved after upgraded gskit to latest fixpack 8.0.50.89 and LIBPATH is having lib64 directories. 

teera_aoo

#3
September 02, 2019, 09:30:05 AM
Hi everyone,

(Posted on 2019)  ;D

Do you have resolution on this issue? Currently, we found problem like this forum.
The LIBPATH in my environment as below:
...
LIBPATH=/usr/opt/ibm/gsk8_64/lib64:/home/archive/sqllib/lib64:/usr/lib:/lib

Unfortunely, when start arssocked has this error, and cannot authen user with LDAPS.

teera_aoo

#4
September 05, 2019, 10:02:51 AM
My problem has been solved by:
- Apply CMOD 10.1.0.5.
- Included gskit library from CMOD package (/usr/opt/ibm/gsk8_64/lib64) at begining of OS environment variable (LIBPATH (AIX), LD_LIBRARY (Linux))


Good luck!!  ::)  :-*  :o

Ed_Arnold

#5
September 05, 2019, 01:16:24 PM
teera - thank you for posting your solution.

Ed
#zOS #ODF

nishen

#6
October 04, 2019, 08:43:56 AM
Hello,

I have done as you have instructed and applied FP5 to V10.1, I do not get the cannot load SSL libraries anymore, but i still cannot connect using SSL LDAP. Previously I was using LDAP but we are moving to using SSL LDAP.

I am just getting invalid credentials -- ldap_rc=49

I have enable server trace = 15 but i cannot see any details apart from the error. I am not even sure if I am making it to bind to LDAP yet. If I remove the SSL settings it does work, so nothing wrong with my user or bind user.

Please let me know if you can provide any direction so I check where it is failing.

Thank you
Nishen

Justin Derrick

#7
October 04, 2019, 01:07:01 PM
CMOD LDAP error code 49:  LDAP_INVALID_CREDENTIALS    The client passed either an incorrect DN or password, or the password is incorrect because it has expired, intruder detection has locked the account, or another similar reason.

There's an article on the CMOD wiki for this as well:  https://cmod.wiki/index.php/LDAP_Error:_Invalid_credentials

-JD.
Call:  +1-866-533-7742  or  eMail:  jd@justinderrick.com
IBM CMOD Wiki:  https://CMOD.wiki/
FREE IBM CMOD Webinars:  https://CMOD.Training/
IBM CMOD Professional Services: https://CMOD.cloud

Interests: #AIX #Linux #Multiplatforms #DB2 #TSM #SP #Performance #Security #Audits #Customizing #Availability #HA #DR
Print
Go Up Pages1
User actions
SMF 2.1.4 © 2023, Simple Machines
ProCurve Theme Made By : TwitchisMental