Internal Server Error displays when logging in to the RSA SecurID Access portal
Originally Published: 2016-08-16
Article Number
Applies To
RSA Product/Service Type: Identity Router
Issue
Cause
If this error is seen when the user is logging into the Portal, it is likely because of a problem connecting to the LDAP or Active Directory (AD) server being used to authenticate the user. Some common causes for a technical issue preventing authentication with LDAP/AD are:
- A network outage or error between the Identity Router (IDR) and the LDAP or AD server.
- Misconfigured DNS entry for the LDAP or AD server.
- The LDAP or AD server is not configured correctly in the RSA SecurID Access Administration Console.
- Invalid credentials (user ID and/or password) configured for LDAP/AD in the RSA SecurID Access Administration Console.
Resolution
2016-08-12/14:58:51.538/UTC [ajp-apr-8009-exec-9] WARN com.symplified.service.shared.authnengine.AuthenticationEngineImpl[90] -
Error occurred while trying to authenticate against user store <store-name> com.symplified.adapter.api.userstore.ldap.LdapUserStoreException:
Failed to create initial dir context for LDAP connection. LDAP server is '<server-fqdn-or-ip>' principal is '<user id>'.
CAUSE: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C8, comment: AcceptSecurityContext error, data 52e, v2580]
In this case "LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C8, comment: AcceptSecurityContext error, data 52e, v2580" is a Microsoft Active Directory error message, indicating a likely problem with the AD credentials configured in RSA SecurID Access, possibly a password issue. Contact Microsoft Support if assistance is needed with troubleshooting Active Directory errors.
Instructions to how to view the RSA SecurID Access IDR system log are at available on RSA Link (View the Identity Router System Log and Generate and Download an Identity Router Log Bundle). Note that if you have several IDRs behind a load balancer, you may have to check the logs for all the IDRs to find the relevant event message(s).
If logged event messages indicate an LDAP/AD issue, check your LDAP/AD configuration in RSA SecurID Access for errors. See the RSA Via Access Help, sections under Identity Sources, for information about configuring LDAP/AD in RSA SecurID Access.
Related Articles
Proxy Error is displayed when logging in to the RSA Community Number of Views Entitlements Server error when logging into or starting the RSA Access Manager Administration Console Number of Views RSA SecurID Access Cloud Authentication Service authentication fails with HTTP 500 Internal Server error Number of Views Entering login credentials into Entitlement Manager (admingui) returns a 500 internal server error Number of Views RSA Announces RSA Authentication Agent 2.0.1 for Microsoft AD FS Support for Windows Server 2019 Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA Release Notes for RSA Authentication Manager 8.8 AFX Server remains in a 'Not running' State, afx status shows 'timed out waiting for AFX applications to start' and mule_e… RSA Authentication Manager 8.7 SP1 Patch 1 Hotfix 1 RESTful Web Service Connector capability test fails with unauthorized (401) error when using Basic authentication in RSA G…
Don't see what you're looking for?
