LDAP Server - Connection is not been disconnected

Document ID : KB000095492
Last Modified Date : 11/05/2018
Show Technical Document Details
Issue:
When a user request connection to CA PPM application it first goes through to LDAP Server for Authentication. Once the connection is being established after login to CA PPM Server (using load balance URL), the established connection on to LDAP Server for Authentication request stays open and doesn't gets disconnected.
Environment:
CA PPM On Premise Environments
Cause:
On further investigation using network packet sniffing tool <WireShark> it was identified as the incorrect BIND Address configuration on CSA was causing the persistent connection between CA PPM and LDAP Servers.
 
Resolution:

Steps to configure BIND Address:

1) On the affected server, login to CSA. 

URL: http://<hostname>:8090

2) Go to Server Properties, and make sure that the 'Bind Address' it's set up correctly.

 a. If CA PPM server is a stand-alone environment, the 'Bind Address' should be the Server's IP address.

 b. If the server is a part of a CA PPM cluster environment, the 'Bind Address' should be from the same subnet that includes the other servers as members.
     server1_ip, server2_ip, server3_ip,...   

 c. If the server has multiple NICs, specify the IP address of the interface through which multicast traffic is to flow. 

 d. And if you use IPv6 Link Local addresses, the zone ID used must be the same for all addresses in a cluster of servers.

3) Save the changes.

4) Stop, Deploy and Start the CA PPM services, and try to access the application.

NOTE: If you change the multicast address or the bind address, you can receive a system error as you navigate away from the subtab page. If you receive an error, log out from CSA, and then log back in and continue the configuration.