-
タイトル
PMHelpDesk or SelfService Portal login fails when LDAPS is enabled in Password Manager 5.14.3 -
説明
PMHelpDesk or SelfService Portal login fails when LDAPS is enabled in Password Manager 5.14.3
There are no errors in the Password Manager logging, but the System logs fail with the following error:
Log Name: System
Source: Schannel
Date: 12/24/2024 7:53:52 PM
Event ID: 36884
Task Category: None
Level: Error
Keywords:
User: domain\svc-pm
Computer: host.domain.local
Description:
The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is 10.XXX.X.XXX:636. The TLS connection request has failed. The attached data contains the server certificate.NOTE: The error contains the IP Address of the target Active Directory Domain Controller leveraged by Password Manager.
-
原因
This issue is being tracked as Defect ID 472898.
-
対策
WORKAROUND 1
Disable LDAPS on the machine hosting the PMHelpDesk or SelfService Portal site. Please see this resource for instructions on enabling LDAPS.
WORKAROUND 2
Add the IP Address of a target Active Directory Domain Controller to the Subject Alternative Name of a server authentication certificate and configure Password Manager to only use that specific Active Directory Domain Controller for domain connectivity.
STATUS
Waiting for fix in a future release of Password Manager.
-
変更要求
472898