AD authentication for Self Service, help needed
Having issues getting AD Authentication to work with AM Prime Self Service authentication. Getting the following error:
- Active Directory
- am prime
- Auth Manager
- Authentication Manager
- authentication status 9
- Community Thread
- Forum Thread
- RSA Authentication Manager
- RSA SecurID
- RSA SecurID Access
- Self Service
- self-service authentication
- unexpected error occured while authenticating with ldap
You should open a support case for this... as working on AM Prime issues in a forum like
this is not ideal and may 'reveal too much' about things that should remain private. It is your
network and setup, and AM Prime is usually customized for each install.
Not the same as 'out of the box software' like RSA Authentication Manager where everyone
has essentially the same basic setup.
But you can do basics like verify the password policy for the service accounts on the RSA server
are not expired or need to change, as well as do an LDAP bind with AD explorer using the LDAP service
account configured in the properties file and verify the account works.
The ssp.properties file, there’s an LDAP section which has the configured password for LDAP administrator.
The LDAP URL and credentials for direct AD auth are found in the ssp.properties file. It sounds if the AD credential used for looking up the userDN and checking the AD account status may have been locked or has an expired password.. could also be the SSP bind account to AM has an expired credential as well. Examination of the ssp_daily.log will probably indicate what exactly is wrong.
Open a ticket for support.