Error message in RSA Authentication Manager 8.x Security Console or Self-Service Console when logging in with LDAP password
Originally Published: 2013-08-01
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.0 patch 5 and earlier, 8.1
Issue
Administrator cannot authenticate to Security Console using LDAP password
The Authentication Activity monitor or report indicates:
ERROR,13002,Principal authentication,User "<userID>" attempted to authenticate using authenticator "LDAP_Password". The user belongs to security domain "SystemDomain",Failure,AUTHN_METHOD_FAILED,Authentication method failed
Cause
The LDAP password is expired from the Authentication Manager's perspective and requires update.
Because the connection between Authentication Manager and the LDAP server is using insecure ldap (no encryption) password update is not allowed.
Resolution
Alternatively, disable password expiration:
- Login to the Security Console with an account in the internal database (not an AD or SunOne account) that has full super admin privileges.
- Navigate to Authentication > Policies > Password Policies > Manage Existing and click on the policy being used for the affected Security Domain and click Edit.
- In the Lifetime section, uncheck Require periodic password changes.
- Click Save.
Notes
Related Articles
Firefox reports Secure Connection Failed when connecting to the RSA Security Console Number of Views Unable to login to RSA Authentication Manager Security Console as super admin Number of Views About the Security Console Number of Views Configure Security Console Authentication Methods Number of Views Supported web browsers report an error message when accessing RSA Authentication Manager 8.1 Security Console or Operation… Number of Views
Don't see what you're looking for?
