NFA LDAPS Error: The server is not operational

Document ID : KB000045504
Last Modified Date : 14/02/2018
Show Technical Document Details

Issue: 

When setting up LDAP with SSL authentication with the root and intermediate certificate set properly in the Java Keystore and MMC.exe but still get authentication errors in your LDAP Test in the SSO Config Tool you get this error: "The server is not operational".

Environment:  

NFA 9.3.2+

Windows Server 2012+

Cause: 

This problem occurs because of an error Windows Server 2008 R2. The LDAP client stores the node's canonical name in the alias field. This problem occurs if the node alias and the node name are different.

Resolution:

  1. To use one of the hotfixes in this package, you must create a registry subkey. To do this, follow these steps: 
  2. Start Registry Editor. 
  3. Locate the following subkey in the registry: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LDAP
  4. Create a new REG_DWORD value that is named UseHostnameAsAlias, and set the value to anything other than zero.
  5. Exit Registry Editor, and then restart the computer.

Additional Information:

 

https://support.microsoft.com/en-us/kb/2275950