Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

LDAPS Cert Works in Dev but not Prod

jdfranco
New Contributor III
New Contributor III

‎06/20/2023 07:08 AM

We have an AD connection setup in our dev environment and it is working; however, the same AD connection using the LDAPS certificate in prod is not working. We have verified the parameters between the two environments are the same.

Do the two environments use the same certificate or are new certificates needed for each environments?

0 Kudos
5 REPLIES 5

sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎06/20/2023 07:53 AM

Hello @jdfranco ,

If the Dev and Prod servers are the same, you can use the same certificate. However, I would recommend validating the certificate.

Have you attempted to connect using the direct IP address through a non-SSL port? If so, is the error you're experiencing the same in that scenario as well?

For Ref :- https://forums.saviynt.com/t5/identity-governance/ad-connection-not-working-in-prod-setup/td-p/38630 

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

jdfranco
New Contributor III
New Contributor III
In response to sudeshjaiswal

‎06/20/2023 09:07 AM

No, with non-ssl and IP ldap://X.X.X.X:389/ connection is working fine

0 Kudos

sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎06/20/2023 08:43 PM

Hello @jdfranco,

Please provide the log snippet and analysis of the connection-saving and testing process for the following scenario:

Scenario to check:

1. Hostname using SSL port (636)
2. Hostname using Non-SSL port (389)
3. IP using SSL port (636)

Thanks,

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

jdfranco
New Contributor III
New Contributor III
In response to sudeshjaiswal

‎06/23/2023 06:54 AM

Hello,

Here are the log snippets for the scenarios.

1. Hostname using SSL port (636) - Not working
2. Hostname using Non-SSL port (389) - Not working
3. IP using SSL port (636) - Not Working

4.IP using Non-SSL - WORKING

Preview file
72 KB
Preview file
115 KB
Preview file
54 KB
Preview file
86 KB
0 Kudos

sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎07/06/2023 03:38 AM

Hello @jdfranco,

This is the DNS issue, could you please verify if the hostname details are added in the DNS?

Thanks,

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos
Copyright © 2024 Khoros, LLC