Search the Community
Showing results for tags 'ldaps'.
We are going from LDAP to LDAPS. our data center is in AWS. Our ldap fqdn points to a cname and that points to a load blancer. I have loaded our LDAPS cert onto the server and it looks good. but when I switch from LDAP to LDAPS it fails to log in with a default message in passwordstate: Failed 'Active Directory' login attempt for UserID 'yyy\zzzz' from the IP Address 'yy.yy.yy.yy'. Possible incorrect Username or Password, or this could also be caused by restricted Logon Hours in Active Directory. I pulled up event viewer and found this in the log:
If you have your Passwordstate web server installed on a non-domain machine, or if you are using our Password Reset Portal module, it is possible the LDAPS connections are getting blocked. To help troubleshoot the connection status, Microsoft provide a tool. To use this tool, please download first from https://www.microsoft.com/en-us/download/details.aspx?id=15326 On your web server, install this tool you downloaded from the above link and the run the ldp.exe file as per below screenshot - Change the port to be 636, enter your primary domain controller and tick the SSL option: